Canonical’s LTS Docker Image Portfolio is now available on Amazon ECR Public
Canonical
on 1 December 2020
Tags: Amazon Web Services , AWS , containers , docker , LTS , Security

Today, Canonical announced the availability of its curated set of secure container application images on Amazon ECR Public, complementing the current offering.
Multiple registries, one product
Developers now also have access to the LTS Docker Image Portfolio from the Amazon ECR Public registry. Free and commercial versions of the hardened images are available.
The image portfolio includes fast-moving developer-oriented images, regularly rolling to newer releases of either the application or the Ubuntu base layer. An example MySQL image delivered on top of Ubuntu 20.04 LTS on Amazon ECR Public is at:
docker pull public.ecr.aws/ubuntu/mysql:8.0-20.04_beta
Stable versions of the images with up to five years of free standard security maintenance can be found at:
docker pull public.ecr.aws/lts/mysql:8.0-20.04_beta
Up to ten years of Extended Security Maintenance is available for Canonical customers.
Up to 10-year security commitment
Announced last week, Canonical’s long term commitment to security is expanded to open source applications delivered as container images on Docker Hub. With Ubuntu as the base layer, these images benefit from the five year standard security maintenance period and ten years under Extended Security Maintenance (ESM) on the full stack.
“Although it’s legitimate to ask whether one container image should be kept running for ten years, the likelihood is that some containers may well run in production environments for up to ten years and they need to be secured throughout,” said Valentin Viennot, Product Manager at Canonical. “DevSecOps teams are facing a commensurable technical challenge with containers and we want to remove the risk of discovering new vulnerabilities in existing containers too late, without the skillset to fix them in a reasonable timeframe. The LTS Docker Image Portfolio now offers this expertise on Amazon ECR Public.”
Read more in AWS’ four new container capabilities press release.
What’s the risk of unsolved vulnerabilities in Docker images?
Having a trusted source for your dependencies is critical for a secure software supply chain. How confident are you in your container security? See how Ubuntu and Canonical can help.
Newsletter signup
Related posts
DirtyClone Linux kernel local privilege escalation vulnerability fixes available
On June 25, 2026, JFrog published their research into CVE-2026-43503, referring to the vulnerability as DirtyClone. The vulnerability had previously been...
pedit COW kernel local privilege escalation vulnerability mitigations
Mitigations are available for the Linux vulnerability with CVE ID CVE-2026-46331. The CVE ID was assigned on June 16 2026 and highlighted as a local privilege...
PinTheft Linux kernel vulnerability mitigation
A local privilege escalation (LPE) security vulnerability in the Linux kernel, codename “PinTheft,” was publicly disclosed on May 19, 2026. The vulnerability...