KernelCare now supports automated live patching of Debian 10.
Debian recently released version 10 (Buster), that’s compatible with Linux Kernel 4.19.
Some new updates and features to this version include:
- Virtual GPU support - this gives the ability for GPU hardware to be shared among many virtual machines, and not directly passed-through to one.
- Performance improvements when it comes to large-scale SSD-based swap.
- Improved in-kernel TLS acceleration
- Ext4 filesystem improvements, with up to 64k in size of extended attributes and support for billions of directory entries.
- Increased support of physical memory - from 64 terabytes to 4 petabytes
- Vulnerability updates for Spectre and Meltdown, with other vulnerability patches for CPUs.
- Cgroups can now set I/O latency targets and have support for block devices
Also included in this newest Debian 10 version update:
- AppArmor is enabled by default
- nftables now replaces iptables for packet filtering
- Updates to Apt for enhanced security
As always, you can try KernelCare for free for 30 days!
KernelCare also supports:
- KernelCare Now Supports the UEK for Oracle Linux
- KernelCare Supports Automated Live Patching for Ubuntu 20.04
- KernelCare Supports CentOS 8 Automated Live Patching
- Proxmox 6 Automated Live Patching Support Is Live
- KernelCare Supports RHEL8 Automated Live Patching
- Developer Tutorial: Live patching Debian 10 Linux kernel with Kpatch
KernelCare is a live patching system that patches Linux kernel vulnerabilities automatically, with no reboots. It's used on over 300,000 servers, and has been used to patch servers running for 6+ years. It works with all major Linux distributions, such as RHEL, CentOS, Amazon Linux, and Ubuntu. It also interoperates with common vulnerability scanners such as Nessus, Tenable, Rapid7, and Qualys. To talk with a consultant about how KernelCare might meet your enterprise’s specific needs, contact us directly at firstname.lastname@example.org.