ESM appearing for 22.04 after upgrade

I have 2 Lubuntu 20.04 systems that I upgraded to 22.04. Before the upgrade, I noticed it wasn’t updating anything and discovered it is only supported for 3 years (not 5 like Ubuntu) so did the 22.04 upgrade. Everything went fine. However, at login it still shows x number of security updates available through ESM and not sure why. Also, my tenable scanner was showing missing security updates before the upgrade but after the upgrade the scan is clean. This is what I get at login…

Welcome to Ubuntu 22.04.2 LTS (GNU/Linux 5.15.0-71-generic x86_64)

 * Documentation:  https://help.ubuntu.com
 * Management:     https://landscape.canonical.com
 * Support:        https://ubuntu.com/advantage

Expanded Security Maintenance for Applications is not enabled.

0 updates can be applied immediately.

14 additional security updates can be applied with ESM Apps.
Learn more about enabling ESM Apps service at https://ubuntu.com/esm

For details on what Ubuntu Pro offers, you can visit Ubuntu Pro - FAQ - Ubuntu Pro - Ubuntu Community Hub or the ESM link in your paste.

Ubuntu Pro (a newer form of ESM) allows security updates for ‘universe’ packages, which haven’t been available before; as an optional service.

Do note security updates have always been available for packages from ‘main’ and remain so without ESM/Pro, the new feature is them being available for ‘universe’ by enabling Pro.

For info on the repositories see Repositories/Ubuntu - Community Help Wiki

Are you saying there really are 14 security updates in ESM and that ESM is available even though this version is only a year old? My 20.04 ubuntu servers don’t show that; only lubuntu. My vulnerability scanner shows nothing missing.

If you want to add those security patches to packages in the ‘universe’ repository, then Ubuntu Pro/ESM is required; as the default Ubuntu LTS system has always only included them for packages from ‘main’.

You can use the command

pro security-status --esm-apps

to get more details, with the packages that have security-fixes available to them appearing in bold.

Packages are built for specific releases, and are usually created for the newer releases, and not always backported to all older releases; don’t forget the optional support for ‘universe’ packages is still very new.

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.