Canonical publishes set of secure container application images - Help Net Security

Canonical publishes set of secure container application images - Help Net Security

Canonical has published the LTS Docker Image Portfolio, a curated set of secure container application images, on Docker Hub.



The LTS Docker Image Portfolio comes with up to ten years Extended Security Maintenance by Canonical. “LTS Images are built on trusted infrastructure, in a secure environment, with guarantees of stable security updates,” said Mark Lewis, VP Application Services at Canonical.


“They offer a new level of container provenance and assurance to organizations making the shift to container based operations.”


Canonical and Docker will collaborate on Docker Official Images and LTS Docker Image Portfolio to bring the best of the two to the community and ecosystem. The entire LTS Docker Image Portfolio will be exempted from per-user rate limits.


Critical CVE fixes within 24 hours


The Snyk State of Open Source Security report for 2020 found that many popular container images have known security vulnerabilities. The only image in the study free of such concerns was the Ubuntu image, maintained by Canonical.


“Our track record underscores our commitment to security,” said Valentin Viennot, Product Manager at Canonical. “We address high and critical CVEs in LTS offerings, and fix critical issues within 24 hours.” The Snyk report finds the average time for enterprises to remediate homegrown images is 68 days.


Hardened free and commercial LTS images


Several images from the LTS Docker Image Portfolio will be freely available as Docker Official Image versions during the five year standard security maintenance period of the underlying Ubuntu LTS. The entire LTS Image Portfolio, including content exclusively available to Canonical customers, will be available through Docker H ..