Google Distributed Cloud Hosted release notes

November 9, 2023 [GDCH 1.9.7]


Google Distributed Cloud Hosted 1.9.7 is now released.

See the product overview to learn about the features of Google Distributed Cloud Hosted.


Add-on Manager:

The Google Distributed Cloud Virtual for Bare Metal version is updated to 1.14.9 to apply the latest security patches and important updates.

See Google Distributed Cloud Virtual for Bare Metal 1.14.9 for details.

Operations Center IT (OCIT):

  • The October Microsoft patches are included.


Updated the gcr.io/distroless/base base image to digest sha256:a17ac8990b4395aab186b9538ca04715d2a7408dfd2b6473ff7b16d098d0cb09 to apply the latest security patches and important updates.


The following container image security vulnerabilities are fixed:


A security issue for CVE-2023-2022-40982 is fixed. The BIOS version bump applies the latest security patches.


An issue with a Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 is fixed. This issue allowed a remote attacker to perform an out-of-bounds memory write by using a crafted HTML page. (Chromium security severity: Critical). This issue usually affects anything that uses frameworks, code libraries, and OSes that incorporate Electron, another code library that uses libwebp, or has libwebp built-in directly. For more details, see CVE-2023-4863dd.


Google Distributed Cloud Hosted 1.9.7 fixes an issue when system cluster BGP Sessions cannot be established due to overlapping ClusterIPs.


Google Distributed Cloud Hosted 1.9.7 has a known issue with the upgrade where NodeUpgrade gets stuck in the in process status.


Google Distributed Cloud Hosted 1.9.7 has a known issue where the root admin node and operating system upgrade does not progress.


Google Distributed Cloud Hosted 1.9.7 has a known issue where the artifact distribution fails after attaching signatures.


Monitoring:

  • Alerts in organization system clusters don't reach the ticketing system.