Skip to main content

Your submission was sent successfully! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates from Canonical and upcoming events where you can meet our team.Close

Thank you for contacting our team. We will be in touch shortly.Close

  1. Blog
  2. Article

Lech Sandecki
on 11 November 2020


Ubuntu 16.04 LTS Xenial Xerus will enter the extended security maintenance (ESM) period in April 2021. This article explains the ESM period and provides a guide for six key considerations when planning a migration path from Ubuntu 16.04 LTS.

Contact us with your ESM questions

What is ESM?

Every Ubuntu Long Term Support (LTS) release has two maintenance periods – the standard security period and the extended security maintenance (ESM) period. After the standard five-year security maintenance and updates period, Ubuntu LTS can benefit from an extended period of maintenance and security patching. With ESM, Ubuntu 16.04 gains three extra years of security updates, shifting its end of life date to April 2024.

What should I do?

Here are six key considerations:

1) Think about what it would take to migrate from 16.04 LTS. You can either upgrade your 16.04 LTS to 18.04 LTS, or get yourself a fresh install of the latest Ubuntu 20.04 LTS. If you want to upgrade from 16.04 LTS to 20.04 LTS there is no direct way, so you would need to follow two upgrade procedures: first to 18.04 LTS and finally to 20.04 LTS. 

Watch the 20.04 migration webinar

2) Consider the full stack. The OS is a heart of the system, and an OS migration is a significant change that touches multiple aspects of your configuration, from the Linux kernel up to your applications. Remember to evaluate how the migration will impact your existing workloads and APIs as your current configuration might depend on specific versions of the applications and libraries that shipped with Ubuntu 16.04 LTS. You will likely find newer versions of applications and libraries if you choose a more recent version of Ubuntu (you can find a few examples below). Those versions might not be fully compatible with your overall configuration anymore after the migration. 


Application

16.04 LTS 
version


18.04 LTS
 version


20.04 LTS 
version


MySQL

5.7

5.7

8.0

PostgreSQL

9.5

10

12

nodejs

4.2.6

8.10

10.19

PHP

7.0

7.2

7.4

Python

2.7.12

2.7.15

3

Ruby

2.3

2.5

2.7

3) Evaluate the risks. Each migration project needs to be carefully planned and executed. Make sure that you understand the full stack: the infrastructure and also the applications running on top. Ensure that all your stakeholders who are using services provided by Ubuntu 16.04 workloads also understand the benefits and risks coming from the migration project.

Different categories of risks to take into account: costs and delay of the code migration for the existing apps, cost of maintaining ageing infrastructure and codebase, the overhead of running a migration project, compliance and security risks of running unpatched infrastructure, etc.

4) Take a step back to assess your options. Having a good overview of your Ubuntu 16.04 LTS estate will help you identify workloads that should continue running on 16.04 and those that can benefit from migrations. You can use this occasion to re-think your overall configuration, identify architectural improvements and quantify potential savings. Consider modernising your Ubuntu estate, moving to a cloud-native environment, or evaluate managed services alternatives to your infrastructure and applications. To make the right choice, examine your utilisation levels and total cost of ownership (TCO).

Get started with Charmed Kubernetes ›

Learn more about Canonical OpenStack ›


5) “Intelligent business decision” is a boss.  Migrations are costly. Many industries optimise the cost of their workloads for long-term deployments, in which case the longer it operates without downtime and code maintenance, the better price-performance it achieves. ESM extends the lifetime of Ubuntu 16.04 LTS until 2024. Oftentimes, postponing a costly migration for three years can save you hundreds of thousands of dollars, and reduce the risk related to the project. ESM does it all while keeping your workloads compliant and secure.

Learn more in this ESM case study

6) Consider Ubuntu Pro for your cloud instances. If you’re unsure of which path to take, need flexibility in your timeline or just a bit of an extra time buffer for your migration project, consider using Ubuntu Pro on a public cloud. Ubuntu Pro is a premium image from Canonical dedicated to production workloads. It includes ESM and is billed by the hour. Moving to Pro you can enjoy Ubuntu 16.04 until 2024, or earlier if you want, with no contract or commitment.

Get started with Ubuntu Pro for AWS ›

Get started with Ubuntu Pro for Azure ›

Get started with Ubuntu Pro for GCP ›

How can I get help?

Canonical is the publisher of Ubuntu providing extended security and hardening, certified compliance, up to 24×7 support and fully managed services for the whole stack of open infrastructure and applications.  

Arrange a 30 minute consultation session

Watch our on-demand webinar on Ubuntu 16.04 LTS moving to Extended Security Maintenance

Learn more in our on-demand webinar

Related posts


Canonical
26 September 2023

CVE 우선순위 지정을 통한 오픈 소스 보안

Security Security

최근 연구에 따르면 엔터프라이즈 시장의 애플리케이션 중 96%가 오픈 소스 소프트웨어를 사용합니다. 오픈 소스 환경이 점점 더 세분화됨에 따라 조직에 대한 잠재적인 보안 취약점의 영향을 평가하는 작업이 엄청날 수 있습니다. 우분투는 가장 안전한 운영 체제 중 하나로 알려져 있습니다. 하지만 그 이유는 무엇일까요? 우분투 보안팀은 매일 알려진 취약점에 대해 업데이트된 소프트웨어 패키지를 수정하고 릴리스하기 때문에 ...


Alex Murray
20 July 2023

Securing open source through CVE prioritisation

Cloud and server Article

According to a recent study, 96% of applications in the enterprise market use open-source software. As the open source landscape becomes more and more fragmented, the task to assess the impact of potential security vulnerabilities for an organisation can become overwhelming. Ubuntu is known as one of the most secure operating systems, but ...


Canonical
26 June 2024

Canonical offers 12 year LTS for any open source Docker image

Canonical announcements Article

‘Everything LTS’  – Canonical will build distroless Docker images to customer spec that include upstream components not packaged in Ubuntu, and fix critical CVEs within 24 hours, supported on RHEL, Ubuntu, VMware or public cloud K8s for 12+ years. London, 26 June 2024 Canonical today expanded its LTS offering beyond the ‘deb’ packages of ...