CVE-2024-45016 was discovered in the Linux kernel, which can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes

## Security CVE-2024-45016 was discovered in the Linux kernel, which can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes. For more details, see the [GCP-2024-057 security bulletin](https://cloud.google.com/kubernetes-engine/security-bulletins#gcp-2024-057). ## Feature The following beta APIs were added in Kubernetes 1.31 and are available in GKE version 1.31.1-gke.1361000 and later: * networking.k8s.io/v1beta1/ipaddresses * networking.k8s.io/v1beta1/servicecidrs Enabling both APIs at the same time enables the Multiple Service CIDRs Kubernetes feature in a GKE cluster. For more information, see the following resources: * [KEP-1880 - Multiple Service CIDRs](https://github.com/kubernetes/enhancements/blob/master/keps/sig-network/1880-multiple-service-cidrs/README.md) * [Extended Service IP ranges](https://kubernetes.io/docs/tasks/network/extend-service-ip-ranges/) During the beta phase, you can only create Service CIDRs in the `34.118.224.0/20` reserved IP address range to avoid possible issues with overlapping IP address ranges. ## Feature Ray Operator on GKE is now generally available on 1.29 and later. Ray Operator is a GKE add-on that lets you manage and scale [Ray](https://docs.ray.io/) applications. To learn more, see the [Ray Operator documentation](https://cloud.google.com/kubernetes-engine/docs/add-on/ray-on-gke/concepts/overview).