October 4, 2024
Google Distributed Cloud (GDC) air-gapped 1.13.4 is available.
See the product overview to learn about the features of Distributed Cloud.
See the product overview to learn about the features of Distributed Cloud.
Updated the Ubuntu OS image version to 20240903 to apply the latest
security patches and important updates.
To take advantage of the bug and security vulnerability fixes, you must upgrade
all nodes with each release.
The following security vulnerabilities are fixed:
- CVE-2021-46926
- CVE-2022-48174
- CVE-2023-40546
- CVE-2023-40547
- CVE-2023-40548
- CVE-2023-40549
- CVE-2023-40550
- CVE-2023-40551
- CVE-2023-42667
- CVE-2023-49141
- CVE-2023-52629
- CVE-2023-52760
- CVE-2024-2201
- CVE-2024-2511
- CVE-2024-4741
- CVE-2024-5535
- CVE-2024-24853
- CVE-2024-24860
- CVE-2024-24980
- CVE-2024-25939
- CVE-2024-26830
- CVE-2024-26921
- CVE-2024-26929
- CVE-2024-36901
- CVE-2024-39484
- CVE-2024-40897
Updated the Rocky OS image version to 20240906 to apply the latest
security patches and important updates.
To take advantage of the bug and security vulnerability fixes, you must upgrade
all nodes with each release.
The following security vulnerabilities are fixed:
- CVE-2021-35937
- CVE-2021-35938
- CVE-2021-35939
- CVE-2021-41072
- CVE-2023-3758
- CVE-2024-1737
- CVE-2024-1975
- CVE-2024-4076
- CVE-2024-6345
- CVE-2024-32487
The following issues are identified:
Block storage:
- The IPsec configuration has an error.
Object storage:
- The
ObjectStorageStorageNodeReconciler
reports that the GDU service is locked.
Upgrade:
NodeUpgradeTask
CR is stuck at theNodeOSInPlaceUpgradePostProcessingCompleted
condition.- The
meta-monitoring
addon fails due to the strongswan location being in a different runtime directory.
The following issues are fixed:
Block storage:
- Fixed the issue with Grafana pods stuck in
Init
state due to volume mount errors. - Fixed the issue with a Trident multi-attach error.
Cluster management:
- Fixed the issue with the
GPUAllocation
for a shared service cluster not configured correctly.
Identity and access management:
- Fixed the issue with the
gatekeeper-audit
pods in theopa-system
namespace frequently restarting.
Physical servers:
- Fixed the issue with servers stuck in a provisioning state.
Upgrade:
- Fixed the issue with the root org upgrade being stuck on a failed signature job.
- Fixed the issue where the tenant organization upgrade fails at the preflight check stage with
ErrImagePull
.
Virtual machines:
- Fixed the issue where a BYO image import fails for qcow2 and raw images.
- Fixed the issue where provisioning a disk from an image fails.
Vertex AI:
- Fixed the issue where the Operable Component Lifecycle Management (OCLCM) controller for Vertex AI subcomponents shows errors during upgrades from version 1.9.x to 1.13.3.
- Fixed the issue where Translation requests with more than 250
characters crash
translation-prediction-server
pods.
The following changes are identified:
Version updates:
- The Google Distributed Cloud for bare metal version is updated to
1.29.400-gke.86 to apply the latest security patches and important updates.
See the Google Distributed Cloud for bare metal 1.29.400-gke.86 release notes for details.