Allocates kernel memory loads new, secure code into it

Momentarily freezes all processes in a ‘safe’ mode

Modifies original functions and jumps to new secure code, ensuring old (vulnerable) code can never run

Unfreezes all processes and resumes

KernelCare Enterprise

Rebootless Linux Kernel Patching & Custom Patching

Private patch server for gated infrastructures - ePortal

Works On-prem & in the cloud

Out-of-the-box integration with patch management & vulnerability assessment tools

Rebootless Linux Kernel Patching & Custom Patching

Works On-prem & in the cloud

Private patch server for gated infrastructures - ePortal

Out-of-the-box integration with patch management & vulnerability assessment tools

Supported Distributions

For a complete list of supported kernels and patches, visit this page

Out-of-the-box Integrations

Our customers

1,500+  enterprises, healthcare providers, government agencies, and universities trust TuxCare with their nearly 1M systems

Our customers

1,500+  enterprises, healthcare providers, government agencies, and universities trust TuxCare with their nearly 1M systems

Testimonials

   

In Corporate, we use KernelCare to do Linux OS updates seamlessly and without reboots required. It’s really helped us with meeting InfoSec requirements for compliance and eased the time commitments of my team relating to patching. It’s relatively inexpensive as well.

Ben Heiskell Director, Infrastructure Software Engineering

Even with a well-managed data centre, an expedited reboot of all your server infrastructure is a daunting feat. When a serious kernel vulnerability is released, KernelCare Enterprise affords us the ability to comprehensively address the issue in a timely manner and without rebooting.

Steven Greenberg United Launch Alliance

The support from all interactions with the TuxCare team at CloudLinux has been world-class, and does not go unnoticed

Peter Minogue IT Infrastructure, Information Technology Services Research School of Biology,The Australian National University

Here at RSB, we run bioinformatics servers which we cannot reboot frequently due to the nature of the research we do. From COVID research, Corals to next-gen genome work. These jobs can take weeks to months to run, and we never know when a short break in the jobs will occur, so can’t easily schedule a reboot. We then discovered kernel live patching; It needed to be simple, professional, affordable and handle a range of Linux systems including Ubuntu, Debian and Centos.KernelCare easily best met these needs, it gave us the peace of mind knowing our kernels were patched and protected. It was so easy to install and apply, and is now all automatic from that point on, and worked on all our flavours of Linux! We can now show this patching compliance to our Universities security team and keep the academics happy and productive at the same time,a win-win for us

Oscar Steenmann Managing Partner

Our reputation is built on commitment to keep our systems absolutely stable. Therefore, we spent a few months trying out KernelCare and testing it. KernelCare has not disappointed, it has proven itself to be reliable on all our AWS-based instances. It is also a lot cheaper than its competitors that allowed us to pass savings to our customers and remain competitive. Finally, looking at our time-keeping stats, we saw that we were spending on average 40 hours dealing with every kernel vulnerability. With KernelCare it takes just 15 minutes to patch the same amount of servers

Dean Suhr President

Quick easy install, automatic - it runs in the background, my server is always up to date ... no downtime!

Alex Wojtowicz Owner

We have been using KernelCare at our EC2 instances and web hosting servers for a long time. We do not run EC2 instances without KernelCare because we think that this is fundamental to bring security and reliability to our company and customers.

Andrzej Talarek Java Developer

We tested it, but to be honest, it wasn’t very exciting - it ‘just worked’.

Justin Jett Director of Audit and Compliance

KernelCare provides services that make server management easy, particularly with regard to security. Not needing to restart a server to get the latest kernel security updates is essential for business-critical applications that can't be taken down for patches. Additionally, their solutions allow some legacy applications to remain secure when alternative options are not available on the market or would be cost-prohibitive to implement.

Philip Rawlinson Technical Director

KernelCare keeps a vital part of our services updated without having downtime from reboots - with all the recent Intel exploits this has been even more valuable than ever. KernelCare also adds additional security to the Kernel making it seem even better value for money. I use it across all our server fleet and would recommend it to all Linux administrators.

TuxCare Pricing is Designed with the needs of IT Teams in Mind

Affordably priced in principle, TuxCare also provides volume discounts for large enterprise Linux infrastructures.

Starting from

$3.95
OSI / month
OSI - Operating System Image, including physical device, virtual machine or a public cloud instance.

* OSI – Operating System Image, including physical device, virtual machine or a public cloud instance

for KernelCare Enterprise subscription. Volume discounts apply

Contact us

On average, it takes 43 DAYS to see a cyberattack once a patch is released for a critical or high priority vulnerability. Timing is critical when it comes to security updates. TuxCare Live Patching Services will take on most of the patching lifecycle tasks and complete them in four steps without a system reboot, reducing the typical patching task resources by 60%!
  • Contact us Leave your message in a form and we will reply to it as soon as possible.
  • BOOK A MEETING Pick a date that works for you to see available times to meet with one of TuxCare engineers.

Contact sales for a volume discount

Select a Date & Time

Add more security with other Live Patching Services by TuxCare

Library

That detects and patches shared libraries in-memory without disrupting the applications using them.

Learn More
IoT

Provides live patching for Linux kernels in IoT devices without disrupting ongoing processes and operations.

Learn More
QEMU

Protects enterprise virtualization stack with live patching that does not affect virtual machines or requires migrating them to other servers.

Learn More
DataBase

Keeps the enterprise’s most important asset, data, safe by live patching the database server, MySQL, MariaDB or PostgreSQL, without restarting the DB or any applications using it.

Learn More
LibraryCare add-on for

That detects and patches shared libraries in-memory without disrupting the applications using them.

Learn More
IoT

Provides live patching for Linux kernels in IoT devices without disrupting ongoing processes and operations.

Learn More
QEMU

Protects enterprise virtualization stack with live patching that does not affect virtual machines or requires migrating them to other servers.

Learn More
DataBase

Keeps the enterprise’s most important asset, data, safe by live patching the database provider, MySQL, MariaDB or PostgreSQL, without interrupting the applications that depend on it.

Learn More

Your compare list

Compare
REMOVE ALL
COMPARE
0