Help & DocumentationCloud Virtual MachineNoticeVulnerability repairing for Linux images

Vulnerability repairing for Linux images

Last updated: 2020-02-25 11:22:33

PDF

Tencent Cloud Security Center will pay attention to all kinds of security Vulnerability situation in a timely manner. After the official publish important security Vulnerability, Tencent Cloud Security Center will promptly follow up Vulnerability's situation, provide users with publish and Vulnerability information, and provide Vulnerability repair plan.

Fixing period of Tencent Cloud official images

  • Vulnerability fixing on a regular basis: Tencent Cloud will conduct vulnerability fixing on official images periodically with the frequency being twice A year;
  • The fixing of high-risk vulnerabilities: For high-risk vulnerabilities, Tencent Cloud will provide emergency fixes for customers at the earliest possible time.

Image types covered by vulnerability fixing

With its security maintenance principles for images being in consistent with those of the upstream official image releases, Tencent Cloud will conduct security maintenance for the system versions that are within the official maintenance period.

"CentOS",
CentOS only maintains updates of software and vulnerabilities for the latest minor versions of the current major versions. Tencent Cloud, with its maintenance principles being consistent with that of CentOS, only conducts regular vulnerability fixing and emergency fixing for high-risk vulnerabilities for the latest minor versions of the current major versions within the official maintenance period.

Notes on the maintenance of Tencent Cloud's existing CentOS version images:

  • Centos 5.11 32/64-bit (Centos will continue to provide support)
  • Centos 5.11 32/64-bit (Centos will continue to provide support)
  • Centos 5.11 32/64-bit (Centos will continue to provide support)
  • Centos 5.11 32/64-bit (Centos will continue to provide support)
  • Centos 7.1 64-bit (Centos has officially stopped providing support for this)
  • Centos 7.1 64-bit (Centos has officially stopped providing support for this)
  • Centos 6.8 32/64-bit (Centos will continue to provide support until the next version is released)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 7.1 64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)
  • Centos 6.6 32/64-bit (Centos has officially stopped providing support for this)

"Ubuntu",
Ubuntu officially provides long-term updating and maintenance services for software and vulnerabilities of the LTS version system. The updating for the server version of each LTS system will last for 5 years. Tencent Cloud officially provides all the LTS version server systems and, aiming to ensure the consistency with Ubuntu's official release, conducts regular vulnerability updates on the images within the maintenance period and conducts emergency fixing on high-risk vulnerabilities.

Notes on the maintenance of Tencent Cloud's existing Ubuntu version images:

  • Ubuntu 18.04 LTS 64-bit (Ubuntu officially supports maintenance)
  • Ubuntu 16.04 LTS 64-bit (Ubuntu officially supports maintenance)
  • Ubuntu 10.04 LTS 32/64-bit (Ubuntu has officially stopped its maintenance and production)
  • Ubuntu 10.04 LTS 32/64-bit (Ubuntu has officially stopped its maintenance and production)
  • Ubuntu 10.04 LTS 32/64-bit (Ubuntu has officially stopped its maintenance and production)

"Debian",
Debian officially maintains two main branch systems: stable and oldstable, where stable is the current stable version and oldstable is the last stable version. Debian officials will maintain software and Vulnerability updates for the stable system, and LTS (Long Term Support) maintenance programs for oldstable will be provided by volunteers and the community. Tencent Cloud is consistent with the upstream official maintenance strategy and only carries out regular Vulnerability repairs to the stable branch system officially maintained by Debian.

Notes on the maintenance of Tencent Cloud's existing Debian version images:

  • Debian 9.064-bit (Debian officially supports maintenance)
  • Debian 8.2 32/64-bit (It is expected that its maintenance will be stopped by June 6, 2018)
  • Debian 7.8 32/64-bit (Debian has officially stopped its maintenance)
  • Debian 7.4 64-bit (Debian has officially stopped its maintenance)

"OpenSUSE",
According to the life cycle of openSUSE system, Tencent Cloud conducts vulnerability fixing on images on a regular basis for systems that are officially supported.

Notes on the maintenance of Tencent Cloud's existing openSUSE version images:

  • OpenSUSE 42.3 (maintenance officially supported by openSUSE)
  • OpenSUSE 12.3 32/64-bit (openSUSE has officially stopped its maintenance)
  • OpenSUSE 12.3 32/64-bit (openSUSE has officially stopped its maintenance)

"FreeBSD",
Since the FreeBSD 11.0 Mutual RELEASE, FreeBSD has been providing a 5-year maintenance period for the stable branch. For the versions earlier than 11.0 Mutual RELEASE, FreeBSD provides different maintenance periods for different types.

Notes on the maintenance of Tencent Cloud's existing FreeBSD version images:

  • FreeBSD 11.1 64-bit (FreeBSD officially supports maintenance)
  • FreeBSD 10.1 64-bit (FreeBSD officially stopped maintenance)

Commercial version system

Tencent Cloud does not provide Vulnerability updates and maintenance of the commercial version of the system.