October 4, 2023 [GDCH 1.9.6]
Google Distributed Cloud air-gapped 1.9.6 is now released.
See the product overview to learn about the features of Google Distributed Cloud air-gapped.
In the Google Distributed Cloud air-gapped 1.9.6 Addon Manager (ADD) component, the Google Distributed Cloud Virtual for Bare Metal version is updated to 1.14.8 to apply the latest security patches and important updates.
See Google Distributed Cloud Virtual for Bare Metal 1.14.8 release notes for details.
Updated Canonical Ubuntu OS image version to 20230815 to apply the latest security patches and important updates. The following security vulnerabilities are fixed:
- CVE-2016-10228
- CVE-2019-25013
- CVE-2020-6096
- CVE-2020-13987
- CVE-2020-13988
- CVE-2020-17437
- CVE-2020-27618
- CVE-2020-29562
- CVE-2020-36691
- CVE-2021-3326
- CVE-2021-3999
- CVE-2021-27645
- CVE-2021-33560
- CVE-2021-35942
- CVE-2021-40528
- CVE-2022-0168
- CVE-2022-1184
- CVE-2022-2208
- CVE-2022-2210
- CVE-2022-2257
- CVE-2022-2264
- CVE-2022-2284
- CVE-2022-2285
- CVE-2022-2286
- CVE-2022-2287
- CVE-2022-2289
- CVE-2022-4269
- CVE-2022-23218
- CVE-2022-23219
- CVE-2022-27672
- CVE-2022-40982
- CVE-2022-41804
- CVE-2023-1611
- CVE-2023-2124
- CVE-2023-3090
- CVE-2023-3111
- CVE-2023-3141
- CVE-2023-3390
- CVE-2023-20593
- CVE-2023-23908
- CVE-2023-28321
- CVE-2023-28322
- CVE-2023-32629
- CVE-2023-35001
- CVE-2023-37327
- CVE-2023-37328
- CVE-2023-38633
Google Distributed Cloud air-gapped 1.9.6 has a known issue where role-based access control (RBAC) and schema settings in the VM manager is stopping users from starting VM backup and restore processes.
Google Distributed Cloud air-gapped 1.9.6 has a known
issue where the kube-state-metrics deployment crash loops.
Google Distributed Cloud air-gapped 1.9.6 has a known issue where a worker node is unbalanced after upgrade.
Google Distributed Cloud air-gapped 1.9.6 has a known issue with the upgrade where the GPU device plugin does not start.
Google Distributed Cloud air-gapped 1.9.6 has a known issue where a user cluster with three n2-standard-4 worker nodes has insufficient CPU resources for upgrade.
Google Distributed Cloud air-gapped 1.9.6 has a known issue where upgrade is stuck while terminating a pod.
Google Distributed Cloud air-gapped 1.9.6 has a known issue where a user cluster does not become ready in time to restart the coredns deployment.
An issue with a Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 is fixed. This issue allowed a remote attacker to perform an out of bounds memory write by using a crafted HTML page (Chromium security severity: Critical). This issue usually affects anything that uses frameworks, code libraries, and OSes that incorporate Electron, another code library that uses libwebp, or has libwebp built-in directly.
For more details, see CVE-2023-4863dd.
Google Distributed Cloud air-gapped 1.9.6 has a known issue where alerts in organization system clusters don't reach the ticketing system.
The root admin bare metal node rejects in-bound network traffic after a firmware update.