Your submission was sent successfully! Close

Jump to main content
  1. Blog
  2. Article

Dustin Kirkland
on 11 April 2017

FAQs: Ensuring the ongoing security compliance of Ubuntu


Canonical recently announced that the Ubuntu 12.04 LTS (Long Term Support) period will end on Friday, April 28, 2017.

Following the end-of-life of Ubuntu 12.04 LTS, Canonical is offering Ubuntu 12.04 ESM (Extended Security Maintenance), which provides important security fixes for the kernel and the most essential user space packages in Ubuntu 12.04. Below are several frequently asked questions about what happens when the Ubuntu 12.04 LTS period ends.

If you have any more questions we encourage customers to reach out via Twitter @ubuntu or @dustinkirkland

What CVEs (Common Vulnerabilities and Exposures) will receive patches?

Ubuntu 12.04 ESM is focused on fixing high and critical CVEs. Low and medium updates typically have a mitigation path.

Which hardware platforms are supported under Ubuntu 12.04 ESM?

Currently, we are maintaining the Ubuntu Cloud/Server 64-bit AMD/Intel binaries. We will extend support for other platforms in future updates.

Do all levels of Ubuntu Advantage have access to Ubuntu 12.04 ESM?

Yes. Ubuntu 12.04 ESM is available for UA Virtual Guest, UA Standard and UA Advanced customers. Ubuntu 12.04 ESM is also available to UA Essential customers with a quantity of 100 systems or more. For more information on levels please visit buy.ubuntu.com. If you are a qualifying UA customer, you can request your credentials and have your system ready to receive updates without downtime or gaps.

How can we ensure the security of our Ubuntu 12.04 systems after April 28th?

Sign up to Ubuntu Advantage now, and you will benefit from UA services immediately without having a gap in service when Ubuntu 12.04 goes end-of-life on April, 28th. Ubuntu Advantage is available at buy.ubuntu.com, and or for AWS users, you can purchase Ubuntu Advantage Standard or Advanced through the AWS Marketplace.

How long will Ubuntu 12.04 ESM be maintained?

Ubuntu 12.04 ESM updates will be provided for at least 2 years.

Is it possible to purchase Ubuntu 12.04 ESM months down the road when needed, with or without backdating the cost, or does it need to be in place in advance?

You can purchase UA support any time. It does not need to be in place in advance, although we strongly recommend you eliminate the gap between when Ubuntu 12.04 ESM is enabled on your system(s), to avoid exposing your systems to security vulnerabilities. Ubuntu Advantage is priced year-over-year so there is no backdating.

Any plans to offer Ubuntu 12.04 ESM a la carte without the other features of Advantage?

Yes, in quantities of 1,000 machines or above, at $50/node/year. Contact Canonical Sales.

We’re mirroring the repository on our internal Landscape Server. Is there a guide on how to get Ubuntu 12.04 ESM if using Landscape?

ESM is just a regular Ubuntu archive, but authenticated and served over HTTPS. Archive mirroring is already available in Landscape, and is the only supported mechanism for mirroring the ESM archive.

What will the 12.04 LTS support situation look like from April 29th onward? Will we be able to raise functionality tickets with Canonical or are you ending actual support and providing only security patches?

The support window for Ubuntu 12.04 closes on April 28, 2017. The support team will not be able to fix bugs or build fixed packages once the 12.04 LTS archive is closed.

Will Ubuntu 12.04 ESM include patching my-favorite-package (e.g. PHP5.3)?

Canonical’s Ubuntu Security Team are committed to providing fixes for HIGH and CRITICAL CVEs against the most commonly used server packages in the Ubuntu Main archive. This is essentially a continuation of the same security updates that Ubuntu 12.04 Server users have always received.

Will source code for Ubuntu 12.04 ESM patches be made available? If so, will that be publicly available on Launchpad or only through Ubuntu 12.04 ESM?

Both the binary updates and source code will be available to Ubuntu 12.04 ESM users. We will honour any and all licenses associated with the open source code in Ubuntu.

Related posts


Canonical
26 September 2023

CVE 우선순위 지정을 통한 오픈 소스 보안

Security Security

최근 연구에 따르면 엔터프라이즈 시장의 애플리케이션 중 96%가 오픈 소스 소프트웨어를 사용합니다. 오픈 소스 환경이 점점 더 세분화됨에 따라 조직에 대한 잠재적인 보안 취약점의 영향을 평가하는 작업이 엄청날 수 있습니다. 우분투는 가장 안전한 운영 체제 중 하나로 알려져 있습니다. 하지만 그 이유는 무엇일까요? 우분투 보안팀은 매일 알려진 취약점에 대해 업데이트된 소프트웨어 패키지를 수정하고 릴리스하기 때문에 ...


Canonical
19 September 2023

라이브패치(Livepatch)에 새로운 13개월 슬라이딩 지원 기간이 있습니다. 여러분에게 어떤 의미가 있을까요?

Security Security

라이브패치는 시스템을 즉시 재부팅할 필요 없고 런타임에 중요하고 높은 보안 커널 공통 보안 취약성 및 노출(CVE)을 수정하는 유용한 툴입니다. 그러나 정기적인 유지 관리 기간 및 재부팅을 대체하는 용도로 사용해서는 안 됩니다. 좋은 기업 정책에는 시스템이 안정적이고 안전하게 유지되도록 라이브패치와 정기적인 재부팅이 모두 포함되어야 합니다. 그 이유는 펌웨어 또는 장치 드라이버 업데이트와 같은 일부 시스템 CVE는 ...


Aaron Whitehouse
12 September 2023

Ubuntu Explained: How to ensure security and stability in cloud instances—part 1

Cloud and server Article

The LTS philosophy, releases, updates and repositories explained Since we launched Ubuntu Pro’s Expanded Security Maintenance for additional packages, and we now integrate more closely with public cloud update management tools, more people have been asking us about the Ubuntu archive and how this is divided and security patched. In this b ...