TuxCare Live
Patching Services

Put an end to service interruptions & non-compliance
caused by system reboots

TuxCare Live Patching Services

  • KernelCare Enterprise

    Is automated live patching for Linux Kernels, with centralized management and common automation and vulnerability management tools integration.

  • LibraryCare

    Detects and patches shared libraries in-memory without disrupting the applications using them.

  • KernelCare For IOT

    Provides live patching for Linux kernels in IoT devices without disrupting ongoing processes and operations.

  • QEMUCare

    Protects enterprise virtualization stack with live patching that does not affect virtual machines or requires migrating them to other servers.

  • DataBaseCare

    DataBaseCare keeps the enterprise's most important asset, data, safe by live patching the database server, MySQL, MariaDB or PostgreSQL, without needing to restart the DB or any applications using it.

Services in detail

* Priority support & ePortal implementation are included
in all subscription plans.

KernelCare Enterprise

LibraryCare is an Add-on for kernelcare enterprise

KernelCare For IOT



KernelCare For IOT

KernelCare Enterprise

  • Rebootless Linux Kernel Patching & Custom Patching;
  • Private patch server for gated infrastructures – ePortal;
  • Out-of-the-box integration with patch management & vulnerability assessment tools;
  • From $3.95/server/month, volume discounts apply;
  • 30-day money-back guarantee.


  • Rebootless Glibc & OpenSSL patching.
  • Requires KernelCare Enterprise subscription.
  • From $5.95/server/month, volume discounts apply;

KernelCare For IOT

  • Rebootless Linux Kernel Patching on Arm.
  • Private patch server for gated infrastructures.
  • Custom patching set up solely for your embedded infrastructure.
  • The pricing is custom-based and only provided after a POC stage.


  • Rebootless QEMU virtualization patching.
  • From $7.25/system/month, volume discounts apply;
  • Available in Q2 2021.


  • Rebootless patching for MySQL, MariaDB & PostgreSQL.
  • From $7.25/system/month, volume discounts apply.
  • Available in Q3 2021.

TuxCare Live Patching Services Available for All Major Linux Distributions

With 40+ Linux distributions supported by TuxCare, IT teams can be
sure all enterprise systems stay compliant, without service interruptions.

For a complete list supported kernels and
patches, visit this page

Our customers

1,500+ Enterprises are already using TuxCare


Oscar Steenmann

Managing Partner

Our reputation is built on commitment to keep our systems absolutely stable. Therefore, we spent a few months trying out KernelCare and testing it. KernelCare has not disappointed, it has proven itself to be reliable on all our AWS-based instances. It is also a lot cheaper than its competitors that allowed us to pass savings to our customers and remain competitive. Finally, looking at our time-keeping stats, we saw that we were spending on average 40 hours dealing with every kernel vulnerability. With KernelCare it takes just 15 minutes to patch the same amount of servers

Dean Suhr


Quick easy install, automatic - it runs in the background, my server is always up to date ... no downtime!

Alex Wojtowicz


We have been using KernelCare at our EC2 instances and web hosting servers for a long time. We do not run EC2 instances without KernelCare because we think that this is fundamental to bring security and reliability to our company and customers.

Andrzej Talarek

Java Developer

We tested it, but to be honest, it wasn’t very exciting - it ‘just worked’.

Justin Jett

Director of Audit and Compliance

KernelCare provides services that make server management easy, particularly with regard to security. Not needing to restart a server to get the latest kernel security updates is essential for business-critical applications that can't be taken down for patches. Additionally, their solutions allow some legacy applications to remain secure when alternative options are not available on the market or would be cost-prohibitive to implement.

Philip Rawlinson

Technical Director

KernelCare keeps a vital part of our services updated without having downtime from reboots - with all the recent Intel exploits this has been even more valuable than ever. KernelCare also adds additional security to the Kernel making it seem even better value for money. I use it across all our server fleet and would recommend it to all Linux administrators.

TuxCare Pricing is Designed with the needs of IT Teams in Mind

Affordably priced in principle, TuxCare also provides volume discounts for large enterprise Linux infrastructures.

Starting from


OSI / month
OSI - Operating System Image, including physical device, virtual machine or a public cloud instance.

* OSI – Operating System Image, including physical device, virtual machine or a public cloud instance

for KernelCare Enterprise subscription. Volume discounts apply

Contact us

On average, it takes 43 DAYS to see a cyberattack once a patch is released for a critical or high priority vulnerability. Timing is critical when it comes to security updates.

TuxCare Live Patching Services will take on most of the patching lifecycle tasks and complete them in four steps without a system reboot, reducing the typical patching task resources by 60%!

Questions About TuxCare

TuxCare Live patching services provide automated security updates to Linux kernel, shared libraries, virtualizations, databases and ARM64-based devices, alleviating the need to reboot the system

  • The TuxCare team is constantly monitoring security mailing lists to check for vulnerabilities. As soon as one is found, the team prepares a patch and then sends it to distribution servers.
  • An agent will run a process on your device, checking with the distribution servers every 4 hours until it finds a new patch and then safely apply it to the running kernel without needing to stop it.
  • A special kernel module is used to apply the patches. It first loads the update into the kernel address space, then it places relocations on the original code/data to make sure the code block doesn’t execute during the update. Once finished, it will safely switch the execution path from the original to the updated code and then make sure the old code will never run again.
  • TuxCare Live Patching Services do all of this instantly, automatically, and without service interruptions.
TuxCare Live Patching Services do not have a trial available, but we do individual POCs for Enterprise companies and provide a 30-day money-back guarantee to all subscribers. Contact the TuxCare team for more information.
Prices start at $3.95 per month per Operating System Image for KernelCare Enterprise Subscription. You can find details on the TuxCare pricing page.


Contact Sales Form

    Your compare list