Linux patch management, solved
See which packages Ubuntu Pro supports
Ubuntu Pro provides comprehensive coverage for the OS and all your open source.
Full-stack security isn't an afterthought, it's built in
Ubuntu Pro patches are not just automatically pulled from upstream, they're retrieved, evaluated, curated, tested, and backported by Canonical's dedicated security team to ensure production reliability. Each fix is traceable and published in our CVE Tracker.
Total number of fixes provided per package per release
Select a package category and an Ubuntu LTS release to understand the true scope of vulnerabilities fixed by Canonical. See how many CVEs we have patched over the past year across the open source ecosystem, including packages that are not covered under standard security maintenance.
Can't find the packages you are looking for?
You can access the full list of the packages you are using and see which ones need ESM to receive security patches by running this command pro security-status
Focus on building,
not patching
Securing modern infrastructure means protecting not just the OS but all layers above it, including runtimes, ML frameworks, and application stacks, by managing thousands of CVEs and complex dependencies.
Ubuntu Pro handles this complexity with Canonical's expert, proactive remediation, minimizing risk, cutting overhead, and ensuring compliance cost-effectively.
In 2024 we patched
319
Source packages
3366
Binary packages
1476
Unique CVE fixes
Find the coverage that fits
Ubuntu Pro supports the full spectrum of modern development, from individual contributors and agile teams to enterprises with complex uptime and compliance needs. Whether you're securing a handful of systems or managing infrastructure across regions, Pro delivers production-grade security, long-term maintenance, and full-stack coverage that scales with your environment.
Find the right tier and secure your stack end to end
Select the packages you want security maintenance for and an Ubuntu LTS release to understand which are covered under standard security maintenance and which require an Ubuntu Pro subscription.
Expanding the scope of open source support
Ubuntu Pro secures your entire open source stack with enterprise-grade CVE patching, compliance tooling, and 12 years of long term support - 10 of Expanded Security Maintenance (ESM) and 2 additional years of “Legacy” add-on.
Number of packages covered per release - Pro vs LTS
Hover your mouse over the graph to explore how many packages get security updates across different Ubuntu LTS releases.
Packages covered with LTS
Standard security maintenance, packages with CVE fixes available for 5 years
Packages covered with Ubuntu Pro
ESM and Legacy, packages with CVE fixes available for 10+2 years
“Keeping all software maintained is expensive, and hiring new developers with proficiency in older versions of PHP can be very expensive and difficult. We had considered Ubuntu Pro before. Once it became clear that Ubuntu Pro's per-server cost included hypervisors with unlimited VMs, we did our cost analysis and it ended up being the go-to solution.”
A large games publisher