"title"=>"February 26, 2024",
"summary"=>nil,
"content"=>"Anthos clusters on AWS\n
Security
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
CVE-2023-3776
\n\nFor more information, see the GCP-2024-014 security bulletin.
\n
Security
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2024-0193 \n
For more information, see the GCP-2024-013 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2023-6932 \n
For more information, see the GCP-2024-011 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead\nto a privilege escalation on Container-Optimized OS and Ubuntu nodes.
\n\n- \n
- CVE-2023-6931 \n
For more information, see the GCP-2024-010 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.
\n\n- \n
- CVE-2023-6817 \n
For more information, see the GCP-2024-004 security bulletin.
\nAnthos clusters on Azure\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
CVE-2023-3776
\n\nFor more information, see the GCP-2024-014 security bulletin.
\n
Security
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2024-0193 \n
For more information, see the GCP-2024-013 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2023-6932 \n
For more information, see the GCP-2024-011 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead\nto a privilege escalation on Container-Optimized OS and Ubuntu nodes.
\n\n- \n
- CVE-2023-6931 \n
For more information, see the GCP-2024-010 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.
\n\n- \n
- CVE-2023-6817 \n
For more information, see the GCP-2024-004 security bulletin.
\nApp Engine flexible environment Go\nFeature
\nGo 1.22 is now available in preview.
\nApp Engine flexible environment Java\nFeature
\nJava 21 is now generally available.
\nApp Engine flexible environment PHP\nFeature
\nPHP 8.3 is now generally available.
\nApp Engine standard environment Go\nFeature
\nGo 1.22 is now available in preview.
\nApp Engine standard environment Java\nFeature
\nJava 21 is now generally available.
\nApp Engine standard environment PHP\nFeature
\nPHP 8.3 is now generally available.
\nBigQuery\nLibraries
\nA weekly digest of client library updates from across the Cloud SDK.
\nJava
Changes for google-cloud-bigquery
\n\n2.38.0 (2024-02-22)
\n\nFeatures
\n\n\n\nDependencies
\n\n- \n
- Update dependency com.google.apis:google-api-services-bigquery to v2-rev20240211-2.0.0 (#3152) (e5d6888) \n
- Update github/codeql-action action to v2.24.3 (#3148) (a0a7b01) \n
- Update github/codeql-action action to v2.24.3 (#3150) (042fcf0) \n
- Update github/codeql-action action to v2.24.4 (#3161) (531b1a0) \n
Feature
\nThe BigQuery Data Transfer Service can now transfer data from the following data sources:
\n\n\n\nTransfers from these data sources are supported in preview.
\nFeature
\nThe following SQL features are now generally available (GA):
\n\n- \n
GROUP BY GROUPING SETS
clause: Produces aggregated data for one or more grouping sets. \nGROUP BY CUBE
clause: Produces aggregated data for all grouping set permutations. \nGROUPING
function: Checks if a groupable value in theGROUP BY
clause is aggregated. \n
Feature
\nThe GROUP BY ALL
clause, which groups rows by inferring grouping keys from the SELECT
items, is now in preview.
Libraries
\nA weekly digest of client library updates from across the Cloud SDK.
\nJava
Changes for google-cloud-bigtable
\n\n2.34.0 (2024-02-21)
\n\nFeatures
\n\n- \n
- Add the export logic for per-connection error rate metric (#2121) (d053f2d) \n
- Create the backbone of counting errors per connection each minute. (#2094) (7d27816) \n
Dependencies
\n\n- \n
- Update actions/setup-java action to v4 (#2106) (a694296) \n
- Update dependency com.google.cloud:gapic-libraries-bom to v1.30.0 (#2126) (f613bd0) \n
- Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#2113) (ba1973e) \n
- Update dependency com.google.truth.extensions:truth-proto-extension to v1.4.1 (#2119) (0a7ad66) \n
- Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.1 (#2122) (99ec284) \n
- Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#2123) (12d961a) \n
Feature
\nStarting in Go version 1.22 and later, you can no longer use GOPATH
for installing dependencies. To manage dependencies, you use a go.mod
file. For more information about Go versions, and managing dependencies for vendor directories, see GOPATH and Modules in Go documentation.
Feature
\nThe following resource types are now publicly available through the ExportAssets, ListAssets, BatchGetAssetsHistory, QueryAssets, Feed, and Search (SearchAllResources, SearchAllIamPolicies) APIs.
\n\n- \n
- GKE Hub\n
- \n
gkehub.googleapis.com/Fleet
\ngkehub.googleapis.com/Scope
\ngkehub.googleapis.com/Namespace
\ngkehub.googleapis.com/MembershipBinding
\ngkehub.googleapis.com/RBACRoleBinding
\n
\n - AI Platform\n
- \n
aiplatform.googleapis.com/NotebookRuntime
\naiplatform.googleapis.com/NotebookRuntimeTemplate
\n
\n
Changed
\nStarting February 27, 2024, in the us-central1, europe-west1, europe-west2, europe-west3, europe-west6, us-east1, and us-east4 regions it is possible to create new Cloud Composer 1 environments only in projects that already have Cloud Composer 1 environments.
\n\nIn all other existing or newly created projects in these regions, it is possible to create only Cloud Composer 2 environments. This change is a part of the preparation for Cloud Composer 1 end of support, as communicated earlier and described in the Versioning overview.
\nCloud Functions\nFeature
\nCloud Functions now supports the PHP 8.3 and Java 21 runtimes at the General Availability release level for 2nd gen functions.
\nFeature
\nCloud Functions now supports the Go 1.22 runtime at the Preview release level.
\nCloud Logging\nLibraries
\nA weekly digest of client library updates from across the Cloud SDK.
\nJava
Changes for google-cloud-logging
\n\n3.16.0 (2024-02-20)
\n\nFeatures
\n\n\n\nDependencies
\n\n- \n
- Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#1535) (7fde779) \n
- Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.0 (#1528) (b3e4f9b) \n
- Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.0 (#1456) (f27713e) \n
- Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#1542) (af784bc) \n
- Update dependency org.junit.vintage:junit-vintage-engine to v5.10.2 (#1530) (20981dc) \n
Feature
\nLive migration is now available on new Confidential VM instances that meet the following configuration criteria:
\n\n- \n
An N2D machine type with AMD EPYC Milan CPU platform
\nAMD SEV Confidential Computing technology
\nAn operating system image that supports live migration
\n
Announcement
\nDataform is available in the us-south1 region.\nFor more information, see Locations.
\nEventarc\nChanged
\nEventarc is available in the us-west8
(Phoenix, Arizona, North America) region.
Announcement
\nGKE on VMware 1.28.200-gke.111 is now available. To upgrade, see\nUpgrading Anthos clusters on VMware.\nGKE on VMware 1.28.200-gke.111 runs on Kubernetes v1.28.4-gke.1400.
\n\nIf you are using a third-party storage vendor, check the\nGDCV Ready storage partners\ndocument to make sure the storage vendor has already passed the qualification\nfor this release of GKE on VMware.
\nFixed
\nThe following issues are fixed in 1.28.200-gke.111:
\n\n- \n
- Fixed the \nknown issue\nthat caused a preflight check to fail when the hostname isn't in the IP\nblock file. \n
- Fixed the\nknown issue\nwhere the storage policy field is missing in the admin cluster\nconfiguration template. \n
- Fixed the manual load balancer issue where the IngressIP is overwritten\nwith the Spec.LoadBalancerIP even if it is empty. \n
- Fixed the issue that preflight jobs might be stuck in the pending state. \n
- Fixed the\nknown issue\nwhere nfs-common is missing from the Ubuntu OS image. \n
The following vulnerabilities are fixed in 1.28.200-gke.111:
\n\n- \n
Critical container vulnerabilities:
\n\n- \n
- CVE-2022-1996 \n
\nHigh-severity container vulnerabilities:
\n\n- \n
- CVE-2023-2253 \n
\nContainer-optimized OS vulnerabilities:
\n\n- \n
- CVE-2023-6531 \n
\nUbuntu vulnerabilities:
\n\n \n
Changed
\nThis note was updated on March 20, 2024. The links to the security bulletins related to CVE-2024-0193 and CVE-2023-3610 have been updated.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
CVE-2023-3776
\n\nFor more information, see the GCP-2024-014 security bulletin.
\n
Security
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2024-0193 \n
For more information, see the GCP-2024-012 security bulletin.
\nSecurity
\nThe following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:
\n\n- \n
- CVE-2023-3610 \n
For more information, see the GCP-2024-013 security bulletin.
\nFeature
\nGKE now supports Gemma (2B, 7B), Google's new state-of-the-art open models. To learn more, refer to the following guides:
\n\n- \n
- Serve Gemma on GKE with GPUs using Hugging Face TGI \n
- Serve Gemma on GKE with GPUs using vLLM \n
- Serve Gemma on GKE with GPUs using TensorRT-LLM \n
- Serve Gemma on GKE with TPUs using SaxML \n
Deployment to GKE is also supported via Vertex AI Model Garden as part of our Hugging Face, Vertex AI, and GKE integration.
\nMigrate to Virtual Machines\nFeature
\nGenerally available: Migrate to Virtual Machines lets you migrate virtual machine (VM) disks to Persistent Disk volumes on Google Cloud. The migrated disks can be attached to a new VM during the migration process, or an existing VM after the migration is complete.
\nPolicy Intelligence\nFeature
\nThe IAM recommender offers role recommendations for BigQuery datasets. Role recommendations help you reduce excess permissions by suggesting role changes based on actual permission usage. This feature is available in Preview.
\nPub/Sub\nLibraries
\nA weekly digest of client library updates from across the Cloud SDK.
\nPython
Changes for google-cloud-pubsub
\n\n2.19.6 (2024-02-23)
\n\nBug Fixes
\n\n\n\n2.19.5 (2024-02-22)
\n\nBug Fixes
\n\nFeature
\nThe following GoogleSQL JSON functions are now generally available (GA):
\n\n- \n
LAX_BOOL
: Attempts to convert a JSON value to a SQLBOOL
value. \nLAX_FLOAT64
: Attempts to convert a JSON value to a\nSQLFLOAT64
value. \nLAX_INT64
: Attempts to convert a JSON value to a SQLINT64
value. \nLAX_STRING
: Attempts to convert a JSON value to a SQLSTRING
value. \nBOOL
: Converts a JSON boolean to a SQLBOOL
value. \nFLOAT64
: Converts a JSON number to a SQL\nFLOAT64
value. \nINT64
: Converts a JSON number to a SQLINT64
value. \nSTRING
: Converts a JSON string to a SQLSTRING
value. \nJSON_TYPE
: Gets the JSON type of the outermost JSON value and converts the name of\nthis type to a SQLSTRING
value. \n
Announcement
\nStudio voices are now GA.
\nAnnouncement
\nCasual voices are now in preview.
\nVertex AI\nFeature
\nGround Multimodal Models
\n\nModel grounding for gemini-pro
is available in Preview. Use grounding to\nconnect the gemini-pro
model to unstructured text data stores in Vertex AI Search. Grounding lets models access and use the information in the data repositories to generate more enhanced and nuanced responses.\nFor more information, see Ground multimodal models.
Feature
\nVertex AI Search: Use Terraform to create search apps
\n\nYou can use Terraform to create search apps for your Vertex AI Search.
\n\nFor information, see Create a search app.
\nVirtual Private Cloud\nChanged
\nThe VPC documentation has been updated with a new page that describes which services in Google Cloud include support for IPv6. For more information, see IPv6 support in Google Cloud.
\n\n ","author"=>nil,
"link"=>"https://cloud.google.com/release-notes#February_26_2024",
"published_date"=>Mon, 26 Feb 2024 08:00:00.000000000 UTC +00:00,
"image_url"=>nil,
"feed_url"=>"https://cloud.google.com/release-notes#February_26_2024",
"language"=>nil,
"active"=>true,
"ricc_source"=>"feedjira::v1",
"created_at"=>Sun, 31 Mar 2024 21:23:46.105670000 UTC +00:00,
"updated_at"=>Mon, 21 Oct 2024 16:58:17.633148000 UTC +00:00,
"newspaper"=>"GCP latest releases",
"macro_region"=>"Technology"}