Skip to main content
  1. Blog
  2. Article

Carlos Bravo
on 28 August 2025

Ubuntu Pro Minimal 22.04 LTS with CIS hardening is now generally available on AWS


August 28, 2025 – We are excited to announce the general availability of Ubuntu Pro Minimal 22.04 LTS with CIS hardening, a new variant of Ubuntu designed for organizations that require tight security controls, minimal attack surface, and out-of-the-box compliance.

This new offering combines the efficiency of Minimal Ubuntu with the enterprise-grade security coverage of Ubuntu Pro and, now, pre-applied Center for Internet Security (CIS) benchmark hardening, helping enterprises deploy infrastructure that’s compliant from Day Zero.

What is Ubuntu Pro Minimal with CIS hardening?

Starting from Minimal Ubuntu, a streamlined Ubuntu Server variant built with a minimal set of packages, this image includes only the essential components, reducing its attack surface and resource footprint. 

Ubuntu Pro adds an enterprise-grade security layer, delivering patches for high and critical CVEs across all open source packages in Ubuntu, covering thousands of packages.

On top of this minimal, fully secured foundation, we’ve applied a CIS Level 1 benchmark hardening profile. This enforces configuration policies aligned with industry standards and best practices, covering areas such as:

  • File system and permission policies
  • Secure boot settings
  • Network and firewall configurations
  • Logging and auditing rules
  • Access control and authentication mechanisms

Benefits of Ubuntu Pro Minimal with CIS hardening

  • Hardened out-of-the-box: The majority of the CIS security controls are pre-applied, reducing manual effort and human error. You get a secure, minimal OS that’s ready for production from first boot.
  • Minimal footprint, maximum control: By starting from a minimal base, you deploy only what’s needed, keeping your systems lightweight and performant.
  • Pro-grade security coverage: Includes up to 12 years of CVE patching for the full Ubuntu archive (both main and universe) and access to FIPS-certified cryptographic modules, DISA-STIG profiles, and kernel livepatch.
  • Optimized for AWS: Shipped with the AWS-optimized kernel and agents for full compatibility across all instance types and EC2 AWS services.

How to get started

Ubuntu Pro Minimal 22.04 LTS with CIS hardening is already available on the AWS Marketplace and can also be launched using the EC2 console after subscribing to the product. 

To learn more about Ubuntu Pro on AWS and our optional support options, contact us via our webpage  or email us at aws@canonical.com

Related posts


Rhys Knipe
7 July 2026

Ubuntu Server: a platform made for enterprise scale

Ubuntu Article

A platform is an environment that allows software to run smoothly across the infrastructure, runtime, and application layers. The key word there is “smoothly”: a good platform connects those layers so well that you don’t notice it. That’s what Ubuntu Server has become: the essential layer between bare metal and the apps running on top, ...


Luci Stanescu
1 July 2026

DirtyClone Linux kernel local privilege escalation vulnerability fixes available

Ubuntu Ubuntu tech blog

On June 25, 2026, JFrog published their research into CVE-2026-43503, referring to the vulnerability as DirtyClone. The vulnerability had previously been responsibly disclosed to the Linux kernel maintainers and the CVE record published on May 23, 2026. The vulnerability affects multiple Linux distributions, including all Ubuntu releases. ...


Luci Stanescu
1 July 2026

pedit COW kernel local privilege escalation vulnerability mitigations

Ubuntu Ubuntu tech blog

Mitigations are available for the Linux vulnerability with CVE ID CVE-2026-46331. The CVE ID was assigned on June 16 2026 and highlighted as a local privilege escalation (LPE) vulnerability on June 26, 2026. Known as “pedit COW”, this vulnerability affects multiple Linux distributions, including all Ubuntu releases starting with Bionic Be ...