<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=4048960308545126&amp;ev=PageView&amp;noscript=1">

Monthly TuxCare Update - May 2021

monthly updates

June 4, 2021

TuxCare Team

The Enterprise Linux industry has become more complex to maintain, which raises the need for a trusted partner for Linux maintenance. In this monthly overview you will find a round-up of the latest CVEs patched by the TuxCare Team. Also, carry on reading for details of what TuxCare offers you, our newly introduced live patching services and how these match the growth of your organization.

Content:

1. CVEs disclosed in May
2. How to run multiple End-of-Life Distributions In Your Infrastructure and Remain Secure?
3. Live Patching Services for Enterprise Linux: What's New & How You May Benefit From It
4. Linux Support Services: Available for AlmaLinux OS 8 and other popular Enterprise Linux distributions
5. TuxCare Blog: Editor's Pick

 

 

CVEs disclosed in May

Our main goal is to help clients overcome security breaches. To achieve this, TuxCare Extended Lifecycle Support Services track and test vulnerabilities across several packages. 

  • CVE-2021-23017 affects all versions of nginx, including those that are bundled with distributions already past their End-of-Life. TuxCare patches were released on the same day the vulnerability was disclosed.
  • CVE-2021-22898 and CVE-2021-22901 both affect libcurl. During our testing, we discovered that they did not affect the Linux distributions covered by our services.

 

 

How to run multiple End-of-Life Distributions In Your Infrastructure and Remain Secure?

 

The nginx vulnerability mentioned above is just another example of how it feels to use a Linux distribution no longer supported by a vendor - UNSAFE. At the same time, it may be a necessary part of your migration plan, during which your systems must remain protected.  

TuxCare Extended Lifecycle Support services include updates and security patches for all operating system packages. These do not affect any of your current running infrastructures, are affordably priced and do not require a mandatory annual subscription before you start using the service. Available for CentOS 6Oracle Linux 6 and Ubuntu 16.04, plus support for Debian will be released soon.

 

Reduce Maintenance Costs -  Explore TuxCare Pricing

 

 

Live Patching Services for Enterprise Linux: What's New & How You May Benefit From It

 

To support the requirements that larger organizations have for patching EVERY Linux system securely, we took our KernelCare Enterprise as the basis of the service and added:

  • ePortal server
  • Integration with popular vulnerability and automation scanners

Additionally, you can now include:

To familiarise yourself with any of TuxCare Live Patching Services, you can apply for a free proof of concept and see how it can help your organization avoid security beaches.

 

Claim Free POC

 

 

Linux Support Services: Available for AlmaLinux OS 8 and other popular Enterprise Linux distributions

 

How can we maintain all of these distros, and what makes us experts at this? First of all, the company started 11 years ago with an RHEL fork and proceeded with supporting systems that have to be continuously updated. Hence, every support request is answered by a TuxCare architect, each with 10+ years of experience in enterprise infrastructure maintenance.

The TuxCare team is not just another OS vendor. We go beyond bug fixes and updates to help solve security, interoperability and connectivity issues of the open-source software in enterprise solutions.

 

Read the FAQ about AlmaLinux OS

 

 

TuxCare Blog: Editor's Pick


Regarding the last article, check out the discussion between Jay from the LearnLinuxTV and TuxCare Evangelist Joao Correia on how the University of Minnesota got the open-source wrong, plus the strengths and weaknesses of open-source in general.

 

Watch the Discussion

Newsletter

Stay in the Loop

Subscribe to our newsletter to get the latest news on live patching technology from TuxCare Team.

Subscribe