TuxCare Live
Patching Services

Put an end to service interruptions & non-compliance
caused by system reboots

TuxCare Live Patching Services

  • KernelCare Enterprise

    Is automated live patching for Linux Kernels, with centralized management and common automation and vulnerability management tools integration.

  • LibraryCare

    Detects and patches shared libraries in-memory without disrupting the applications using them.

  • KernelCare For IOT

    Provides live patching for Linux kernels in IoT devices without disrupting ongoing processes and operations.

  • QEMUCare

    Protects enterprise virtualization stack with live patching that does not affect virtual machines or requires migrating them to other servers.

  • DataBaseCare

    DataBaseCare keeps the enterprise's most important asset, data, safe by live patching the database server, MySQL, MariaDB or PostgreSQL, without needing to restart the DB or any applications using it.

Services in detail

* Priority support & ePortal implementation are included
in all subscription plans.

KernelCare Enterprise

LibraryCare is an Add-on for kernelcare enterprise

KernelCare For IOT

QEMUCare

DataBaseCare

KernelCare For IOT

KernelCare Enterprise

  • Rebootless Linux Kernel Patching & Custom Patching;
  • Private patch server for gated infrastructures – ePortal;
  • Out-of-the-box integration with patch management & vulnerability assessment tools;
  • From $3.95/server/month, volume discounts apply;
  • 30-day money-back guarantee.

LIBRARYCARE

  • Rebootless Glibc & OpenSSL patching.
  • Requires KernelCare Enterprise subscription.
  • From $5.95/server/month, volume discounts apply;

KernelCare For IOT

  • Rebootless Linux Kernel Patching on Arm.
  • Private patch server for gated infrastructures.
  • Custom patching set up solely for your embedded infrastructure.
  • The pricing is custom-based and only provided after a POC stage.

QEMUCare

  • Rebootless QEMU virtualization patching.
  • From $7.25/system/month, volume discounts apply;

DataBaseCare

  • Rebootless patching for MySQL, MariaDB & PostgreSQL.
  • From $7.25/system/month, volume discounts apply.

TuxCare Live Patching Services Available for All Major Linux Distributions

With 40+ Linux distributions supported by TuxCare, IT teams can be
sure all enterprise systems stay compliant, without service interruptions.

For a complete list supported kernels and
patches, visit this page

Our customers

1,500+  enterprises, healthcare providers, government agencies, and universities trust TuxCare with their nearly 1M systems

Our customers

1,500+ enterprises, healthcare providers, government agencies, and universities trust TuxCare with their nearly 1M systems

Testimonials

   

In Corporate, we use KernelCare to do Linux OS updates seamlessly and without reboots required. It’s really helped us with meeting InfoSec requirements for compliance and eased the time commitments of my team relating to patching. It’s relatively inexpensive as well.

Ben Heiskell Director, Infrastructure Software Engineering

Even with a well-managed data centre, an expedited reboot of all your server infrastructure is a daunting feat. When a serious kernel vulnerability is released, KernelCare Enterprise affords us the ability to comprehensively address the issue in a timely manner and without rebooting.

Steven Greenberg United Launch Alliance

The support from all interactions with the TuxCare team at CloudLinux has been world-class, and does not go unnoticed

Peter Minogue IT Infrastructure, Information Technology Services Research School of Biology,The Australian National University

Here at RSB, we run bioinformatics servers which we cannot reboot frequently due to the nature of the research we do. From COVID research, Corals to next-gen genome work. These jobs can take weeks to months to run, and we never know when a short break in the jobs will occur, so can’t easily schedule a reboot. We then discovered kernel live patching; It needed to be simple, professional, affordable and handle a range of Linux systems including Ubuntu, Debian and Centos.KernelCare easily best met these needs, it gave us the peace of mind knowing our kernels were patched and protected. It was so easy to install and apply, and is now all automatic from that point on, and worked on all our flavours of Linux! We can now show this patching compliance to our Universities security team and keep the academics happy and productive at the same time,a win-win for us

Oscar Steenmann Managing Partner

Our reputation is built on commitment to keep our systems absolutely stable. Therefore, we spent a few months trying out KernelCare and testing it. KernelCare has not disappointed, it has proven itself to be reliable on all our AWS-based instances. It is also a lot cheaper than its competitors that allowed us to pass savings to our customers and remain competitive. Finally, looking at our time-keeping stats, we saw that we were spending on average 40 hours dealing with every kernel vulnerability. With KernelCare it takes just 15 minutes to patch the same amount of servers

Dean Suhr President

Quick easy install, automatic - it runs in the background, my server is always up to date ... no downtime!

Alex Wojtowicz Owner

We have been using KernelCare at our EC2 instances and web hosting servers for a long time. We do not run EC2 instances without KernelCare because we think that this is fundamental to bring security and reliability to our company and customers.

Andrzej Talarek Java Developer

We tested it, but to be honest, it wasn’t very exciting - it ‘just worked’.

Justin Jett Director of Audit and Compliance

KernelCare provides services that make server management easy, particularly with regard to security. Not needing to restart a server to get the latest kernel security updates is essential for business-critical applications that can't be taken down for patches. Additionally, their solutions allow some legacy applications to remain secure when alternative options are not available on the market or would be cost-prohibitive to implement.

Philip Rawlinson Technical Director

KernelCare keeps a vital part of our services updated without having downtime from reboots - with all the recent Intel exploits this has been even more valuable than ever. KernelCare also adds additional security to the Kernel making it seem even better value for money. I use it across all our server fleet and would recommend it to all Linux administrators.

TuxCare Pricing is Designed with the needs of IT Teams in Mind

Affordably priced in principle, TuxCare also provides volume discounts for large enterprise Linux infrastructures.

Starting from

$3.95

OSI / month
OSI - Operating System Image, including physical device, virtual machine or a public cloud instance.

* OSI – Operating System Image, including physical device, virtual machine or a public cloud instance

for KernelCare Enterprise subscription. Volume discounts apply

Contact us

On average, it takes 43 DAYS to see a cyberattack once a patch is released for a critical or high priority vulnerability. Timing is critical when it comes to security updates.

TuxCare Live Patching Services will take on most of the patching lifecycle tasks and complete them in four steps without a system reboot, reducing the typical patching task resources by 60%!

Questions About TuxCare

TuxCare Live patching services provide automated security updates to Linux kernel, shared libraries, virtualizations, databases and ARM64-based devices, alleviating the need to reboot the system

  • The TuxCare team is constantly monitoring security mailing lists to check for vulnerabilities. As soon as one is found, the team prepares a patch and then sends it to distribution servers.
  • An agent will run a process on your device, checking with the distribution servers every 4 hours until it finds a new patch and then safely apply it to the running kernel without needing to stop it.
  • A special kernel module is used to apply the patches. It first loads the update into the kernel address space, then it places relocations on the original code/data to make sure the code block doesn’t execute during the update. Once finished, it will safely switch the execution path from the original to the updated code and then make sure the old code will never run again.
  • TuxCare Live Patching Services do all of this instantly, automatically, and without service interruptions.
TuxCare Live Patching Services do not have a trial available, but we do individual POCs for Enterprise companies and provide a 30-day money-back guarantee to all subscribers. Contact the TuxCare team for more information.
Prices start at $3.95 per month per Operating System Image for KernelCare Enterprise Subscription. You can find details on the TuxCare pricing page.

X

Contact Sales Form

[contact-form-7 id="4459"]

Your compare list

Compare
REMOVE ALL
COMPARE
0