For more detailed information about security-related known issues, see the security bulletin page.
To get the latest product updates delivered to you, add the URL of this page to your feed reader.
June 4, 2019
v1.14.1-gke.5 is the default for new Rapid channel clusters. This version includes patched node images that address CVE-2019-11245.
GKE nodes running Kubernetes v1.14.2 are affected by CVE-2019-11245. Information about the impact and mitigation of this vulnerability is available in this Kubernetes issue report.i In addition to security concerns, this bug can cause Pods that must run as a specific UID to fail.
June 3, 2019
The rollout dates for the May 28, 2019 releases are incorrect. Day 2 spanned May 29-30, day 3 is May 31, and day 4 is June 3.
May 28, 2019
v1.14.2-gke.2 is the default for new Rapid channel clusters, and includes the following changes:
GKE Sandbox is supported on v1.14.x clusters running v1.14.2-gke.2 or higher.
The node image for Container-Optimized OS (COS) is now cos-u-73-11647-182-0.
The node image for Ubuntu is now ubuntu-gke-1804-d1809-0-v20190517.
Node images have been updated to fix Microarchitectural Data Sampling (MDS) vulnerabilities announced by Intel. For more information, see the security bulletin.
The patch alone is not sufficient to mitigate exposure to this vulnerability. For more information, see the security bulletin.
Nodes using these images are now shielded VMs with the following properties:
The following IP ranges have been added to default non-IP-masq
May 20, 2019
No v1.14.x versions this week.
Stackdriver Kubernetes Engine Monitoring is now generally available for clusters using the following GKE versions:
- 1.12.x clusters v1.12.7-gke.17 and newer
- 1.13.x clusters v1.13.5-gke.10 and newer
- 1.14.x (Alpha) clusters v1.14.1-gke.5 and newer
Users of the legacy Stackdriver support are encouraged to migrate to Stackdriver Kubernetes Engine Monitoring before support for legacy Stackdriver is removed.
|Date||Available zones||Available regions|
May 13, 2019
GKE v1.14.x has the following differences from Kubernetes 1.14.1.
You cannot yet create an alpha cluster running GKE
v1.14.x. If you attempt to use the
cluster creation fails.