What is ROS ESM?
As your code develops and packages change, ROS needs to be continuously patched and updated, along with your other software dependencies. This time-consuming endeavour detracts from your robotics development. Duplicating and freezing upstream repositories is not a secure solution. Running un-patched and unmaintained versions of ROS exposes your robot, company and customers to serious risk. The challenge increases when working with End-Of-Life (EOL) ROS distributions or dependencies such as ROS Kinetic and Python 2.
Delivered in partnership with Open Robotics, ROS ESM provides a hardened and long-term supported ROS environment for your robot and its applications. With ROS ESM, you can count on backports for critical security updates, common vulnerabilities and exposures (CVE) fixes and bug fixes for ROS and Ubuntu base OS distribution.
Security maintenance you can trust
No more waiting for a patch to be made available, a breach identified or a security expert available to patch your software stack. With ROS ESM, the time consuming and resource intensive work of keeping core ROS packages secure is no longer a problem.
Our security experts follow a standardised process to identify vulnerabilities, create and test security patches. The implemented testing infrastructure reduces the possibility of reintroducing the vulnerability, and also improves the compatibility with our ESM repository.
Get instant updates and trouble-free maintenance for you and your robotic users with ROS ESM.
Benefits of ROS ESM
Reduced attack surface
Running un-patched and unmaintained versions of ROS exposes both your robot and your customers to serious risk.
ROS ESM offers backported security fixes to your ROS environment for a long-term supported system beyond EOL.
Tracking down community maintainers can prove challenging and does not guarantee a timely and high-quality fix.
ROS ESM gives you a single point of contact to log bugs and propose fixes. Get unparalleled support from the ROS and Ubuntu experts.
A Hardened ROS environment
Upstream ROS updates and packages can break backward compatibility (API and ABI breakage).
ROS ESM delivers security patches, eliminates API/ABI breakage, and fixes high and critical CVE fixes and bugs for ROS.