Canonical Kernel Livepatch Service now available for Ubuntu 14.04 LTS!

We are pleased to announce that we have extended our Canonical Kernel Livepatch Service to users running Ubuntu 14.04 LTS!

The Canonical Kernel Livepatch Service enables runtime correction of critical security vulnerabilities in the kernel without the need to reboot. It is the best way to ensure that machines are safe at the kernel level, while guaranteeing uptime, especially for container hosts where a single machine may be running thousands of different workloads.

Users of Ubuntu are welcome to enable the Canonical Kernel Livepatch Service on 3 systems running 64-bit Intel/AMD Ubuntu 16.04 LTS or now Ubuntu 14.04 LTS! To enable the Canonical Kernel Livepatch Service on more than 3 systems, please speak to us about an Ubuntu Advantage support package, http://ubuntu.com/advantage.

Users can enable the Canonical Kernel Livepatch Service today on Ubuntu 14.04 LTS with the following simple steps:

  1. Install snapd
  2. $ sudo apt update && sudo apt install snapd
  3. snapd and the Canonical Livepatch Service in Ubuntu 14.04 LTS requires users to run the Ubuntu v4.4 kernel in Trusty. Please reboot into this kernel if you are not currently running it.
  4. $ sudo reboot
  5. Go to https://ubuntu.com/livepatch and retrieve your livepatch token, for example:
  6. d3b07384d213edec49eaa6238ad5ff00
  7. Install canonical-livepatch
  8. $ sudo snap install canonical-livepatch
  9. Enable your account with the token from step 3
  10. $ sudo canonical-livepatch enable d3b07384d113edec49eaa6238ad5ff00
  11. That’s it. You’re up and running! You can check your status at any time with:
  12. $ canonical-livepatch status
    kernel: 4.4.0-70.91~14.04.1-generic
    fully-patched: true
    version: "21.1"

Now your kernel will remain securely patched, and you can reboot when it’s convenient for you.

And see the official landing page at http://www.ubuntu.com/server/livepatch

Cheers,

The Canonical Kernel Team

Posted in: