Google Kubernetes Engine (GKE) - June 21st, 2023 [Feature, Security]
Share
Services
## Security
A new vulnerability, CVE-2023-0468, has been discovered in the Linux kernel that could allow an unprivileged user to escalate privileges to root when io\_poll\_get\_ownership will keep increasing req->poll\_refs on every io\_poll\_wake then overflow to 0 which will fput req->file twice and cause a struct file refcount issue. GKE clusters, including Autopilot clusters, with Container-Optimized OS using Linux Kernel version 5.15 are affected. GKE clusters using Ubuntu images or using GKE Sandbox are unaffected.
For instructions and more details, see the [GKE security bulletin](https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2023-015-gke).
## Feature
GKE support for [Hyperdisk Throughput and Hyperdisk Extreme](https://cloud.google.com/kubernetes-engine/docs/concepts/hyperdisk) as an attached persistent disk option is now generally available. Support is available for both Autopilot and Standard clusters running GKE versions 1.26 and later.
What else is happening at Google Cloud Platform?
M121 release CUDA 12.2 images are now available. Updated TensorFlow 2.15 images from CUDA 12.1 to CUDA 12.2
about 13 hours ago
Services
Share
Storage Transfer Service now supports transfers from Amazon S3 over a Google-managed private network
about 13 hours ago
Services
Share
M121 release Updated the R CPU container image from R 4.3 to R 4.4
about 13 hours ago
Services
Share
We released an updated version of Apigee (1-12-0-apigee-4-hotfix)
about 14 hours ago
Services
Share