If you're still running Ubuntu 16.04 LTS (Xenial Xerus), you should know that its free security coverage has finally run out. Originally released in April 2016, this version received five years of standard support until April 2021. After that, Canonical offered Extended Security Maintenance (ESM) through the Ubuntu Pro subscription, which kept it secure until April 2026. Now that ESM has ended, your system is no longer receiving security patches, leaving it vulnerable. The most straightforward solution is to upgrade, but there's a catch: you cannot upgrade directly from 16.04 to the latest LTS. Instead, you'll need to follow a multi-step upgrade path. Below we answer the most common questions about this situation and how to protect your system.
1. What exactly ended for Ubuntu 16.04 LTS in April 2026?
In April 2026, the Extended Security Maintenance (ESM) period for Ubuntu 16.04 LTS officially concluded. ESM was an add-on security update service that was available for users who enabled Ubuntu Pro on their systems. It extended the normal five-year support lifetime by another five years, giving businesses and individuals continued access to critical security patches. After ESM ended, there are no more free security updates for Ubuntu 16.04 from Canonical. This means any new vulnerabilities discovered in the software packages on your system will not be patched, potentially exposing you to cyber attacks, data breaches, and compliance issues.
2. Is there a direct upgrade path from 16.04 to a newer LTS?
No, there is no direct upgrade path from Ubuntu 16.04 LTS to the latest Ubuntu 22.04 or 24.04 LTS. The upgrade process must be done step by step. Canonical recommends first upgrading from 16.04 to 18.04 LTS, then to 20.04 LTS, and finally to 22.04 LTS (or beyond). Each step requires a fresh upgrade process, and you can’t skip intermediate versions. If you try to force a jump, the system may become unstable or fail. This staged approach ensures that all necessary system changes are applied incrementally, reducing the risk of breaking your environment. Check the recommended upgrade stages below.
3. What options do I have if I can’t upgrade immediately?
If upgrading right now isn't feasible, you have a few alternatives. First, you can purchase an Ubuntu Pro subscription – though the ESM for 16.04 is no longer available, Canonical may offer legacy support or customized contracts for critical deployments. Another option is to move your workloads to containers or virtual machines running a supported Ubuntu release. You could also consider switching to a different Linux distribution that still supports older hardware. However, the most secure long-term choice is to upgrade, even if it takes planning. Migrate non-critical systems first, test thoroughly, and then tackle production servers. Keep in mind that running an unsupported OS increases your risk of security incidents and may violate compliance requirements.
4. What is Ubuntu Pro and how does it relate to ESM?
Ubuntu Pro is a subscription service from Canonical that provides extended security maintenance (ESM), among other benefits. For Ubuntu 16.04, standard support ended in April 2021. At that point, users could enable Ubuntu Pro for free on up to 5 machines (for personal use) or pay for commercial tiers to continue receiving security updates. ESM was the specific component that offered patches for critical and high-severity vulnerabilities for another 5 years. With the end of ESM in April 2026, Ubuntu Pro no longer covers 16.04, though it remains active for newer LTS releases. So if you need security updates for 16.04 today, you’re out of luck unless you negotiate a special arrangement.
5. What are the recommended upgrade steps for Ubuntu 16.04 users?
To move from Ubuntu 16.04 to a supported release, you must follow this step-by-step path:
- Upgrade to 18.04 LTS (Bionic Beaver): Run
do-release-upgradeafter updating your current system. - Upgrade to 20.04 LTS (Focal Fossa): From 18.04, run the upgrade process again.
- Upgrade to 22.04 LTS (Jammy Jellyfish): Final step from 20.04.
Each upgrade should be performed on a backup or test system first. After reaching 22.04, you can then upgrade to 24.04 if desired. The entire process may take several hours depending on your hardware and software. You cannot skip versions because the upgrade tools are designed to handle only one major release at a time. If you need help, consult official Canonical documentation or community forums.
6. What are the risks of continuing to use an unsupported system?
Continuing to run Ubuntu 16.04 after security support ends exposes you to several risks. New vulnerabilities are discovered regularly, and without patches, your system becomes an easy target for malware, ransomware, and remote exploits. Sensitive data like customer information or financial records could be compromised. Additionally, many regulatory frameworks (e.g., PCI-DSS, HIPAA) require running supported software, so you may face non-compliance penalties. Performance and stability may also degrade as underlying dependencies become outdated. Even if you restrict network access, some vulnerabilities can be exploited through local privilege escalation. The safest course is to migrate to a supported release as soon as possible.