Check your Linux kernel version. Chances are that you’ll find that the kernel version your system is using has already reached end of life (EOL) as listed on Linux Kernel website.
End of life means the software won’t get bug fixes and support anymore.v
That poses some valid questions. Why is my Linux distribution using a kernel that has reached the end of life? Is this not a security risk? Is my system safe?
Let me explain all these questions in this article.
Checking Linux kernel version and finding its end of life status
Let’s first check the Linux kernel version on your system:
I am using Ubuntu 18.04 here and it shows the Linux kernel version like this:
[email protected]:~$ uname -r 5.0.0-37-generic
Now, you may go to the official Linux kernel website and see what Linux kernels are still being supported. It’s displayed on the homepage itself.
You should see a status like this:
If you don’t see a kernel version listed on the homepage of the kernel website, it means that the specific version has reached the end of life.
As you can see, kernel 5.0 is not listed here. It indicates that this kernel version is not being supported anymore. Actually, it reached end of life in June 2019.
The life cycle of a Linux kernel doesn’t follow a set pattern, unfortunately. It’s NOT like a regular kernel stable release will be supported for X months and a long term support(LTS) kernel will be supported for Y years.
Based on the demand and requirements, there could be several LTS kernel versions with different EOL. You can find them along with their projected EOL on this page.
Now comes the big question. Why is Ubuntu providing kernel 5.0 if the Linux kernel website shows that it has reached its end of life?
Your distribution uses an EOL Linux kernel but that’s Okay!
Have you ever wondered why Ubuntu/Debian/Fedora etc are called Linux distributions? It’s because they ‘distribute’ the Linux kernel.
They have their own modification of the Linux kernel, they add the GUI elements (desktop environment, display server etc) and software and they make it available to their users.
In the typical workflow, a Linux distribution will choose a kernel to provide to its users. And then it will hold on to this kernel for months or years even after the kernel has reached end of life.
How is it safe then? It’s because the distribution maintains the kernel by backporting all the important fixes to its kernel.
In other words, your Linux distribution makes sure that your Linux kernel is patched well and has all the bug fixes and important new features backported to it. There will be thousands of changes on top of the ‘old outdated Linux kernel’.
When the Linux kernel website says that a certain kernel version has reached EOL, it means that the core Linux kernel maintainers are not going to update/patch that kernel version anymore.
But at the same time, the developers at Debian/Ubuntu or other distributions work to keep the same old version alive by bringing the relevant changes from the newer kernel versions (being maintained by the core kernel team) to your distribution’s old kernel.
Bottom line is that even if it seems like your distribution is using an outdated Linux kernel, it is actually being well maintained and not really outdated.
Should you use the latest stable kernel version?
A new stable Linux kernel version is released every 2-3 months. And this makes many users wonder how they can get their hands on that new shiny thing.
To be frank, you should not do that unless you have a pretty good reason for it. Your distribution doesn’t provide it to you. You cannot just use ‘sudo apt give-me-the-latest-stable-kernel' in most distributions.
Now, manually installing the mainline Linux kernel version could be a challenge in itself. Even if you manage to install it, it is now up to you to make sure that this kernel is updated every time there is a bug fix. And when this new kernel reaches end of life, it becomes your responsibility to upgrade to the newer kernel version. It won’t be handled with
apt upgrade like regular Ubuntu updates.
You should also keep in mind that your distribution also has drivers and patches which you may not be able to use if you switch to the mainline kernel.
As Greg Kroah-Hartman puts it, “the best kernel you can use is one that someone else supports“. And who can be better at this job than your Linux distribution?
I hope you have a better understanding on this topic and you won’t panic the next time you find out that the kernel version your system is using has reached the end of life.
I welcome your questions and suggestions. Please feel free to use the comment section.