Extended Update Support (EUS) is an optional Add-On subscription for select Red Hat® Enterprise Linux® subscriptions.1 EUS enhances the value of Red Hat subscriptions by supporting those who want to stay with a particular minor release of Red Hat Enterprise Linux rather than upgrade to new versions with new packages and features on production systems.
Extended update support for most minor OS releases
To obtain maximum benefits in terms of innovation, functionality, and security from a Red Hat Enterprise Linux subscription, Red Hat recommends that customers upgrade to each minor release as they occur (e.g., upgrading from Red Hat Enterprise Linux 8.0 to 8.1 to 8.2). However, some organizations may wish to stay at a particular minor release for an extended period of time for a variety of reasons.
- Sensitive production workloads may dictate minimal infrastructure changes.
- Policy may require complete application stack recertification to support new minor releases.
- Certain independent software vendors (ISVs) may only certify on specific Red Hat Enterprise Linux minor releases.
To address this need, and help ensure the best possible security posture, Red Hat Enterprise Linux EUS streams are available for a period of 24 months from the availability of select minor releases. For example, Figure 1 illustrates planned releases for Red Hat Enterprise Linux 8, indicating which minor releases are planned to include the EUS Add-on.2
Extended Update Support Add-On
The EUS Add-On3 provides considerable stability and value to Red Hat Enterprise Linux subscriptions, allowing for stable production environments for mission-critical applications. EUS provides backports of Critical and Important4 impact Red Hat Security Advisories (RHSAs) as well as Urgent Priority Red Hat Bug Fix Advisories (RHBAs) that are available after a specific minor release, and parallel to subsequent minor releases. EUS is delivered via Red Hat Subscription Manager, where it is implemented as a mirror repository hierarchy. On-premise access is provided through Red Hat Satellite.
Expanded coverage for Common Vulnerabilities and Exposures (CVEs) during the EUS period
To help reduce the risk profile for our customers, Red Hat has recently expanded the scope of coverage for CVE remediation. As of October 1, 2019, CVEs are covered on all actively supported versions of Red Hat Enterprise Linux, with future EUS releases inheriting this enhanced CVE policy. With this step, organizations can maintain greater stability for enterprise deployments and lessen the time to resolution of internal security audits.
Note that CVE remediations are limited to those packages on the EUS Package Inclusion list (https://access.redhat.com/node/4082531).
Note: EUS is included with Red Hat Enterprise Linux Server (Intel/AMD64) Premium and Red Hat Enterprise Linux for IBM Z and LinuxONE with Comprehensive Add-Ons subscriptions. EUS may be purchased as an add-on to Red Hat Enterprise Linux Server (Intel/AMD64) Standard subscriptions and Red Hat Enterprise Linux for IBM Power LE subscriptions. Red Hat Enterprise Linux Server (Intel/AMD64) Self-Support and Red Hat Enterprise Linux Workstation subscriptions are not eligible for the EUS Add-On.
EUS support for Red Hat Enterprise Linux 7 ends with version 7.7. See the Red Hat Enterprise Linux life cycle page for published EUS end dates (https://access.redhat.com/support/policy/updates/errata#Extended_Update_Support).
To learn more about Red Hat’s security classification rating system, visit https://access.redhat.com/security/updates/classification.