
- UBUNTU PYTHON 3.6 PATCH
- UBUNTU PYTHON 3.6 UPGRADE
- UBUNTU PYTHON 3.6 SOFTWARE
Third-party dependencies will stop getting updates. I’m sure critical fixes will get backported, but random annoyances won’t. Reduced support:The teams at these distributions have a limited amount of time, and limited expertise compared to the Python development team. It’s true that if you’re on a newer long-term stable Linux distribution, you have that many more years of both security fixes and bug fixes to Python 3.6. UBUNTU PYTHON 3.6 PATCH
When there is active exploitation and you need to patch fast it is beneficial if you have been updating your other dependencies over time.- Chris Wysopal Decem“But I’m on Ubuntu 20.04/RHEL 8, I’ve got plenty of time!”
UBUNTU PYTHON 3.6 UPGRADE
If you are on Java 7 you will need to upgrade to Java8 The patched version of log4j 2.15.0 requires a minimum of Java 8. If you haven’t upgraded, you’re in trouble: This is playing out in the Java world, where upgrading to a version of log4j that has a critical security bug is only possible if you have a new enough version of Java.
Third-party Python libraries and frameworks are going to start dropping Python 3.6 support.Īnd that means if those libraries have a critical bug, the fix might not be available on Python 3.6, and your Linux distribution is very much not in the business of doing backports for every single Python library in existence.
Third, your dependencies will stop getting updates. Second, while you will get security updates, you won’t necessarily get other bug fixes.īoth Ubuntu 18.04 and RHEL 7 are limited to security updates only at this point.
RHEL 7 stops getting security updates in June 2024. Ubuntu 18.04 stops getting security updates in April 2023. So in theory, you don’t need to upgrade quite yet.įirst, older distribution releases will eventually stop getting support. If you’re using one of those distributions, and it includes Python 3.6, you can rely on the distribution to provide security fixes even if the Python development team won’t. Some Linux distributions guarantee long-term support for a known period of time, including security bug fixes. “I don’t need to upgrade, I’m on long-term-support Linux!” Starting January 2022, if there is a critical security bug, it won’t get fixed by the Python development team. Which is to say, Dec 2021 is the last month there will be any Python 3.6 releases. Releases will stop 5 years after 3.6 is released. After that, releases happened as needed. Bug fix and security fix sub-releases happened every 3 months for the first two years. Python 3.6 was released in December 2016, 5 years before I wrote this article. I’ll be relying throughout on the very useful endoflife.date website for end-of-life dates. Upgrading may involve some amount of other change as well, so we’ll go over some of the issues involved, in particular focusing on long-term-support Linux distributions. That’s a lot of people and a lot of organizations, all of whom should be upgrading ASAP. Python 3.6 is reaching its end of life as of December 2021.Īs of mid-December 2021, 15% of packages downloaded from PyPI were for Python 3.6. Users care about features and bug fixes, not how up-to-date you are.īut there is only so much time you can delay upgrading, and for Python 3.6, the time to upgrade is right now. UBUNTU PYTHON 3.6 SOFTWARE
Upgrading to new software versions is work, and work that doesn’t benefit your software’s users.