To securely operate servers, it’s not enough to patch their Linux kernels. Their shared software libraries must be patched as well. Otherwise, an enterprise lays itself open to attacks that exploit vulnerabilities such as Heartbleed or GHOST. Enterprises usually deal with library vulnerabilities by rebooting their servers or restarting the applications. This causes downtime and windows of exposure. Admins rarely know the exact libraries that services were using, so they just reboot the whole server to update them.
If servers have been patched manually, shared libraries may still contain vulnerabilities without a reboot. When libraries are updated on disk, old unpatched files can persist in a server’s memory. Vulnerability scanners don’t detect these old unpatched library files in memory.
With 40+ Linux distributions supported by TuxCare, IT teams can be sure all enterprise systems stay compliant, without service interruptions.
For a complete list of supported kernels and patches, visit this page
Automated live patching for Linux kernels, with centralized management and common automation and vulnerability management tools integration.
Provides live patching for Linux kernels in IoT devices without disrupting ongoing processes and operations.
Protects enterprise virtualization stack with live patching that does not affect virtual machines or requires migrating them to other servers.
DBcare keeps the most important enterprise asset, data, safe by live patching the database server without needing to restart the database or any applications using it.
Eliminate security vulnerabilities while running end of life Linux
Keep all components of production Linux systems always up-to-date