Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Why was there no livepatch for some particular high or critical CVE?

Livepatches are only produced for supported kernels, and only for CVEs that require a Linux kernel modification to fix the problem (for example, a CPU bug may not have a kernel fix). Further, livepatches do not address security problems in Ubuntu software packages, or in third-party drivers that do not ship as part of the Linux kernel (i.e. NVIDIA GPU drivers).

Livepatch is intended to provide protection from security issues in addition to regular kernel security updates, so be sure to read and follow the security advisories published in Ubuntu Security Notifications (USNs) for your kernel.

Previous What happens when a problem cannot be patched? Next Service access problem

This page was last modified 8 months ago. Help improve this document in the forum.