Editing article

Title

Summary

Content

<strong class="release-note-product-title">BigQuery</strong>
<h3>Changed</h3>
<p>An updated version of <a href="https://cloud.google.com/bigquery/docs/reference/odbc-jdbc-drivers#current_jdbc_driver">JDBC driver for BigQuery</a> is now available.</p>
<strong class="release-note-product-title">Chronicle SOAR</strong>
<h3>Announcement</h3>
<p>Remote Agent Release 1.5.0 is currently in Preview.</p>
<h3>Feature</h3>
<p><strong>Support for future major upgrades</strong></p>

<p>Currently, Google supports minor upgrades which make changes to the remote agent code only.</p>

<p>We have now added support for the customer to carry out a major upgrade which requires changes to the entire OS or libraries in the machine.</p>

<p>You will receive clear instructions before a major upgrade. These must be followed very carefully in order to ensure the Remote Agent can continue to work with your machine.</p>
<h3>Feature</h3>
<p><strong>Support for updating custom environment variables</strong> (ID #47675122)</p>

<p>You can now configure environment variables on the agent. </p>
<h3>Changed</h3>
<p>Remote connector logs are now written to the following path:</p>

<p><code>/opt/SiemplifyAgent/Integrations/&lt;integration name&gt;/Connectors/&lt;connector instance&gt;/remote_script.log</code></p>
<strong class="release-note-product-title">Cloud Database Migration Service</strong>
<h3>Feature</h3>
<p>A new migration job status called <strong>Running with errors</strong> is available for heterogeneous Oracle migrations in Database Migration Service. This status represents migration jobs that encounter errors, but continue replicating data for unaffected objects and attempt to retry faulty operations.</p>

<p>For more information, see <a href="https://cloud.google.com/database-migration/docs/oracle-to-postgresql/review-migration-job#migration_job_statuses">Migration job statuses for Oracle to AlloyDB for PostgreSQL</a> and <a href="https://cloud.google.com/database-migration/docs/oracle-to-alloydb/review-migration-job#migration_job_statuses">Migration job statuses for Oracle to Cloud SQL for PostgreSQL</a>.</p>
<h3>Feature</h3>
<p>Database Migration Service now supports faster migrations of large PostgreSQL databases to Cloud SQL for PostgreSQL.</p>

<p>For information about creating migration jobs using the high-performance parallelism settings, see <a href="https://cloud.google.com/database-migration/docs/postgres/create-migration-job#specify-source-connection-profile-info">Create a migration job to a new destination instance</a> and <a href="https://cloud.google.com/database-migration/docs/postgres/create-migration-job-existing-instance#specify-source-connection-profile-info">Create a migration job to an existing destination instance</a>.</p>
<strong class="release-note-product-title">Cloud Load Balancing</strong>
<h3>Feature</h3>
<p>Typically with HTTPS communication, the authentication works only one way: the client verifies the identity of the server. For applications that require the load balancer to authenticate the identity of clients that connect to it, regional external Application Load Balancer, regional internal Application Load Balancer, and cross-region internal Application Load Balancer support mutual TLS (mTLS).</p>

<p>With mTLS, the load balancer requests that the client send a certificate to authenticate itself during the TLS handshake with the load balancer. You can configure a trust store that the load balancer uses to validate the client certificate&#39;s chain of trust.</p>

<p>For details, see the following:</p>

<ul>
<li><a href="https://cloud.google.com/load-balancing/docs/mtls">Mutual TLS authentication</a></li>
<li><a href="https://cloud.google.com/load-balancing/docs/https/setting-up-mtls-reg-ext-http-lb">Set up mutual TLS for a regional external Application Load Balancer</a></li>
<li><a href="https://cloud.google.com/load-balancing/docs/l7-internal/setting-up-mtls-reg-int-http-lb">Set up mutual TLS for a regional internal Application Load Balancer</a></li>
<li><a href="https://cloud.google.com/load-balancing/docs/l7-internal/setting-up-mtls-reg-int-http-lb">Set up mutual TLS for a cross-region internal Application Load Balancer</a></li>
</ul>

<p>This capability is in <strong>Preview</strong>.</p>

<p>Global external Application Load Balancer and global external Application Load Balancer (classic) already support  frontend mTLS(General Availability).</p>
<strong class="release-note-product-title">Cloud SQL for PostgreSQL</strong>
<h3>Announcement</h3>
<p>The <code>pgvector</code> extension is upgraded from version 0.5.1 to version 0.6.0. Use this extension to store and search for vector embeddings in PostgreSQL databases. For more information, see <a href="https://cloud.google.com/sql/docs/postgres/extensions">Configure PostgreSQL extensions</a>. </p>

<p>To use this version of the extension, update your instance to <code>[PostgreSQL version].R20240130.00_07</code>.  For more information, see <a href="https://cloud.google.com/sql/docs/postgres/self-service-maintenance">Self-service maintenance</a>.</p>
<h3>Announcement</h3>
<p>The rollout of the following items in the <a href="https://cloud.google.com/sql/docs/postgres/release-notes#February_07_2024">February 7</a> release note is now <strong>complete</strong>:</p>

<ul>
<li>Extensions</li>
<li>Flags</li>
<li>Minor versions</li>
<li>Extension versions</li>
<li>Plugin versions</li>
</ul>
<strong class="release-note-product-title">Container Optimized OS</strong>
<h3>Changed</h3>
<h3 id="cos-beta-113-18244-1-31_">cos-beta-113-18244-1-31 <a id="cos-arm64-beta-113-18244-1-31"/></h3>

<table class=pkg>
  <tr>
    <td>Kernel</td>
    <td>Docker</td>
    <td>Containerd</td>
    <td>GPU Drivers</td>
  </tr>
  <tr>
    <td><a href="https://cos.googlesource.com/third_party/kernel/+/2e207237ed731b20c6088fcf976a275d26a68754
">COS-6.1.77</a></td>
    <td>v24.0.9</td>
    <td>v1.7.10</td>
    <td>v535.161.07(default, latest),v470.239.06(R470 for compatibility with K80 GPUs)</td>
  </tr>
</table>
<h3>Changed</h3>
<p>Upgraded app-admin/node-problem-detector to v0.8.17.</p>
<h3>Changed</h3>
<p>Upgraded localtoast to 1.1.7 and opted out of
logging-service-running benchmark by default for cis-level2.</p>
<h3>Changed</h3>
<p>Upgraded app-admin/fluent-bit to v1.9.10.</p>
<h3>Changed</h3>
<p>Upgraded app-admin/sosreport to v4.7.0.</p>
<h3>Changed</h3>
<p>Upgraded app-admin/localtoast to v1.1.7.</p>
<h3>Feature</h3>
<p>Added infiniband and mlx5 device drivers.</p>
<h3>Fixed</h3>
<p>Fixed bug in google-guest-agent service enablement.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26584 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26585 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52434 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26583 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26582 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52435 in the Linux kernel.</p>
<h3>Changed</h3>
<h3 id="cos-101-17162-386-57_">cos-101-17162-386-57 <a id="cos-arm64-101-17162-386-57"/></h3>

<table class=pkg>
  <tr>
    <td>Kernel</td>
    <td>Docker</td>
    <td>Containerd</td>
    <td>GPU Drivers</td>
  </tr>
  <tr>
    <td><a href="https://cos.googlesource.com/third_party/kernel/+/888f6019304c56d32ff9a3d14a09b32683e00a02
">COS-5.10.208</a></td>
    <td>v20.10.24</td>
    <td>v1.6.21</td>
    <td>v470.239.06(default),v535.161.07(latest)</td>
  </tr>
</table>
<h3>Fixed</h3>
<p>Fixed bug in google-guest-agent service enablement.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26589 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2024-26585 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52439 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52434 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52435 in the Linux kernel.</p>
<h3>Security</h3>
<p>Fixed CVE-2023-52443 in the Linux kernel.</p>
<h3>Changed</h3>
<h3 id="cos-109-17800-147-41_">cos-109-17800-147-41 <a id="cos-arm64-109-17800-147-41"/></h3>

<table class=pkg>
  <tr>
    <td>Kernel</td>
    <td>Docker</td>
    <td>Containerd</td>
    <td>GPU Drivers</td>
  </tr>
  <tr>
    <td><a href="https://cos.googlesource.com/third_party/kernel/+/691ab6ee9123880f5fb9478cd7a65a0ca5194495
">COS-6.1.80</a></td>
    <td>v24.0.9</td>
    <td>v1.7.10</td>
    <td>v535.161.07(default, latest),v470.239.06(R470 for compatibility with K80 GPUs)</td>
  </tr>
</table>
<h3>Feature</h3>
<p>Fixed integrity-fs dm-crypt creation flakiness.</p>
<strong class="release-note-product-title">Dataplex</strong>
<h3>Feature</h3>
<p><a href="https://cloud.google.com/dataplex/docs/data-insights">Data insights in Dataplex</a> is now available in <a href="https://cloud.google.com/products#product-launch-stages">Preview</a>. Data insights offers an automated and intuitive way to explore and understand your data. It uses Gemini large language models to generate queries based on the metadata of a table, and lets you uncover patterns, assess data quality, and perform statistical analysis.</p>
<strong class="release-note-product-title">Dataproc</strong>
<h3>Announcement</h3>
<p>New <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions">Dataproc Serverless for Spark runtime versions</a>:</p>

<ul>
<li>1.1.56</li>
<li>1.2.0</li>
<li>2.0.64</li>
<li>2.1.43</li>
<li>2.2.0</li>
</ul>
<h3>Announcement</h3>
<p>Announcing the <a href="https://cloud.google.com/products#product-launch-stages">General Availability (GA)</a> release of Dataproc Serverless for Spark runtime versions <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12">1.2</a> and <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22">2.2</a>, which include the following components:</p>

<ul>
<li>Spark 3.5.1</li>
<li>BigQuery Spark Connector 0.36.1</li>
<li>Cloud Storage Connector 3.0.0</li>
<li>Conda 24.1</li>
<li>Java 17</li>
<li>Python 3.12</li>
<li>R 4.3</li>
<li>Scala 2.12 (1.2 runtime) and Scala 2.13 (2.2 runtime)</li>
</ul>
<h3>Changed</h3>
<p><strong>Dataproc Serverless for Spark:</strong></p>

<ul>
<li>Upgraded Spark to version <a href="https://spark.apache.org/releases/spark-release-3-5-1.html">3.5.1</a> in the latest <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12">1.2</a> and <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22">2.2</a> runtimes.</li>
<li>Upgraded Conda to version <a href="https://github.com/conda/conda/releases/tag/24.1.2">24.1</a> in the latest <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12">1.2</a> and <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22">2.2</a> runtimes.</li>
<li>Upgraded Spark BigQuery connector to version <a href="https://github.com/GoogleCloudDataproc/spark-bigquery-connector/releases/tag/0.36.1">0.36.1</a> in the latest <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12">1.2</a> and <a href="https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22">2.2</a> runtimes.</li>
</ul>
<strong class="release-note-product-title">Firestore</strong>
<h3>Feature</h3>
<p>Firestore now supports using <a href="https://cloud.google.com/firestore/docs/query-data/multiple-range-fields">range and inequality filters on multiple fields</a> in a single query. This feature is in <a href="https://cloud.google.com/products#product-launch-stages">Preview</a>.</p>
<h3>Feature</h3>
<p>Support for <a href="https://cloud.google.com/firestore/docs/query-explain">Query Explain</a>. This feature is in <a href="https://cloud.google.com/products#product-launch-stages">Preview</a>.</p>

<p>Query Explain lets you submit queries and receive detailed query plan, billing and performance statistics on query execution in return. It helps you understand how your queries are executed, showing you inefficiencies.</p>

<p>It functions like the <code>EXPLAIN [ANALYZE]</code> operation in many relational database systems.</p>

<p>For more information, see the <a href="https://cloud.google.com/firestore/docs/query-explain">guide for Query Explain</a>.</p>
<strong class="release-note-product-title">Firestore in Datastore mode</strong>
<h3>Feature</h3>
<p>Datastore now supports using <a href="https://cloud.google.com/datastore/docs/multiple-range-fields">range and inequality filters on multiple fields</a> in a single query. This feature is in <a href="https://cloud.google.com/products#product-launch-stages">Preview</a>.</p>
<h3>Feature</h3>
<p>Support for <a href="https://cloud.google.com/datastore/docs/query-explain-analyze">Query Explain</a>. This feature is in <a href="https://cloud.google.com/products#product-launch-stages">Preview</a>.</p>

<p>It functions like the <code>EXPLAIN [ANALYZE]</code> operation in many relational database systems.</p>

<p>For more information, see the <a href="https://cloud.google.com/datastore/docs/query-explain-analyze">guide for Query Explain</a>.</p>
<strong class="release-note-product-title">Google Cloud Architecture Center</strong>
<h3>Feature</h3>
<p>(New guide) <a href="https://cloud.google.com/architecture/ai-ml/generative-ai-knowledge-base">Jump Start Solution: Generative AI Knowledge Base</a>: Demonstrates how to build an extractive question-answering (EQA) pipeline to produce content for an internal knowledge base.</p>
<h3>Changed</h3>
<p><a href="https://cloud.google.com/architecture/ai-ml">AI and machine learning resources</a>: Added introduction information with guiding links to our generative AI and traditional AI resources.</p>
<strong class="release-note-product-title">Google Distributed Cloud Virtual for VMware</strong>
<h3>Announcement</h3>
<p>GKE on VMware 1.15.10-gke.32 is now available. To upgrade, see
<a href="https://cloud.google.com/anthos/clusters/docs/on-prem/1.15/how-to/upgrading">Upgrading GKE on VMware</a>.
GKE on VMware 1.15.10-gke.32 runs on Kubernetes v1.26.13-gke.1100.  </p>

<p>If you are using a third-party storage vendor, check the
<a href="https://cloud.google.com/anthos/docs/resources/partner-storage">GDCV Ready storage partners</a>
document to make sure the storage vendor has already passed the qualification
for this release of GKE on VMware.</p>
<h3>Fixed</h3>
<p>The following issue  is fixed in 1.15.10-gke.32:</p>

<ul>
<li>Fixed the
<a href="https://cloud.google.com/anthos/clusters/docs/on-prem/latest/troubleshooting/known-issues#controlplanenodeport-field-defaults-to-30968-when-manuallb-spec-is-empty">known issue</a> where the
<code>controlPlaneNodePort</code> field defaults to 30968 when the <code>manualLB</code> spec is empty.</li>
</ul>

<p>The following vulnerabilities are fixed in 1.15.10-gke.32:</p>

<ul>
<li><p>High-severity container vulnerabilities:</p>

<ul>
<li><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24806">CVE-2024-24806</a></li>
</ul></li>
<li><p>Container-optimized OS vulnerabilities:</p>

Author

Link

Published date

Image url

Feed url

Guid

Hidden blurb

--- !ruby/object:Feedjira::Parser::AtomEntry
entry_id: tag:google.com,2016:gcp-release-notes#March_27_2024
content: "<strong class=\"release-note-product-title\">BigQuery</strong>\n<h3>Changed</h3>\n<p>An
  updated version of <a href=\"https://cloud.google.com/bigquery/docs/reference/odbc-jdbc-drivers#current_jdbc_driver\">JDBC
  driver for BigQuery</a> is now available.</p>\n<strong class=\"release-note-product-title\">Chronicle
  SOAR</strong>\n<h3>Announcement</h3>\n<p>Remote Agent Release 1.5.0 is currently
  in Preview.</p>\n<h3>Feature</h3>\n<p><strong>Support for future major upgrades</strong></p>\n\n<p>Currently,
  Google supports minor upgrades which make changes to the remote agent code only.</p>\n\n<p>We
  have now added support for the customer to carry out a major upgrade which requires
  changes to the entire OS or libraries in the machine.</p>\n\n<p>You will receive
  clear instructions before a major upgrade. These must be followed very carefully
  in order to ensure the Remote Agent can continue to work with your machine.</p>\n<h3>Feature</h3>\n<p><strong>Support
  for updating custom environment variables</strong> (ID #47675122)</p>\n\n<p>You
  can now configure environment variables on the agent. </p>\n<h3>Changed</h3>\n<p>Remote
  connector logs are now written to the following path:</p>\n\n<p><code>/opt/SiemplifyAgent/Integrations/&lt;integration
  name&gt;/Connectors/&lt;connector instance&gt;/remote_script.log</code></p>\n<strong
  class=\"release-note-product-title\">Cloud Database Migration Service</strong>\n<h3>Feature</h3>\n<p>A
  new migration job status called <strong>Running with errors</strong> is available
  for heterogeneous Oracle migrations in Database Migration Service. This status represents
  migration jobs that encounter errors, but continue replicating data for unaffected
  objects and attempt to retry faulty operations.</p>\n\n<p>For more information,
  see <a href=\"https://cloud.google.com/database-migration/docs/oracle-to-postgresql/review-migration-job#migration_job_statuses\">Migration
  job statuses for Oracle to AlloyDB for PostgreSQL</a> and <a href=\"https://cloud.google.com/database-migration/docs/oracle-to-alloydb/review-migration-job#migration_job_statuses\">Migration
  job statuses for Oracle to Cloud SQL for PostgreSQL</a>.</p>\n<h3>Feature</h3>\n<p>Database
  Migration Service now supports faster migrations of large PostgreSQL databases to
  Cloud SQL for PostgreSQL.</p>\n\n<p>For information about creating migration jobs
  using the high-performance parallelism settings, see <a href=\"https://cloud.google.com/database-migration/docs/postgres/create-migration-job#specify-source-connection-profile-info\">Create
  a migration job to a new destination instance</a> and <a href=\"https://cloud.google.com/database-migration/docs/postgres/create-migration-job-existing-instance#specify-source-connection-profile-info\">Create
  a migration job to an existing destination instance</a>.</p>\n<strong class=\"release-note-product-title\">Cloud
  Load Balancing</strong>\n<h3>Feature</h3>\n<p>Typically with HTTPS communication,
  the authentication works only one way: the client verifies the identity of the server.
  For applications that require the load balancer to authenticate the identity of
  clients that connect to it, regional external Application Load Balancer, regional
  internal Application Load Balancer, and cross-region internal Application Load Balancer
  support mutual TLS (mTLS).</p>\n\n<p>With mTLS, the load balancer requests that
  the client send a certificate to authenticate itself during the TLS handshake with
  the load balancer. You can configure a trust store that the load balancer uses to
  validate the client certificate&#39;s chain of trust.</p>\n\n<p>For details, see
  the following:</p>\n\n<ul>\n<li><a href=\"https://cloud.google.com/load-balancing/docs/mtls\">Mutual
  TLS authentication</a></li>\n<li><a href=\"https://cloud.google.com/load-balancing/docs/https/setting-up-mtls-reg-ext-http-lb\">Set
  up mutual TLS for a regional external Application Load Balancer</a></li>\n<li><a
  href=\"https://cloud.google.com/load-balancing/docs/l7-internal/setting-up-mtls-reg-int-http-lb\">Set
  up mutual TLS for a regional internal Application Load Balancer</a></li>\n<li><a
  href=\"https://cloud.google.com/load-balancing/docs/l7-internal/setting-up-mtls-reg-int-http-lb\">Set
  up mutual TLS for a cross-region internal Application Load Balancer</a></li>\n</ul>\n\n<p>This
  capability is in <strong>Preview</strong>.</p>\n\n<p>Global external Application
  Load Balancer and global external Application Load Balancer (classic) already support
  \ frontend mTLS(General Availability).</p>\n<strong class=\"release-note-product-title\">Cloud
  SQL for PostgreSQL</strong>\n<h3>Announcement</h3>\n<p>The <code>pgvector</code>
  extension is upgraded from version 0.5.1 to version 0.6.0. Use this extension to
  store and search for vector embeddings in PostgreSQL databases. For more information,
  see <a href=\"https://cloud.google.com/sql/docs/postgres/extensions\">Configure
  PostgreSQL extensions</a>. </p>\n\n<p>To use this version of the extension, update
  your instance to <code>[PostgreSQL version].R20240130.00_07</code>.  For more information,
  see <a href=\"https://cloud.google.com/sql/docs/postgres/self-service-maintenance\">Self-service
  maintenance</a>.</p>\n<h3>Announcement</h3>\n<p>The rollout of the following items
  in the <a href=\"https://cloud.google.com/sql/docs/postgres/release-notes#February_07_2024\">February
  7</a> release note is now <strong>complete</strong>:</p>\n\n<ul>\n<li>Extensions</li>\n<li>Flags</li>\n<li>Minor
  versions</li>\n<li>Extension versions</li>\n<li>Plugin versions</li>\n</ul>\n<strong
  class=\"release-note-product-title\">Container Optimized OS</strong>\n<h3>Changed</h3>\n<h3
  id=\"cos-beta-113-18244-1-31_\">cos-beta-113-18244-1-31 <a id=\"cos-arm64-beta-113-18244-1-31\"/></h3>\n\n<table
  class=pkg>\n  <tr>\n    <td>Kernel</td>\n    <td>Docker</td>\n    <td>Containerd</td>\n
  \   <td>GPU Drivers</td>\n  </tr>\n  <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/2e207237ed731b20c6088fcf976a275d26a68754\n\">COS-6.1.77</a></td>\n
  \   <td>v24.0.9</td>\n    <td>v1.7.10</td>\n    <td>v535.161.07(default, latest),v470.239.06(R470
  for compatibility with K80 GPUs)</td>\n  </tr>\n</table>\n<h3>Changed</h3>\n<p>Upgraded
  app-admin/node-problem-detector to v0.8.17.</p>\n<h3>Changed</h3>\n<p>Upgraded localtoast
  to 1.1.7 and opted out of\nlogging-service-running benchmark by default for cis-level2.</p>\n<h3>Changed</h3>\n<p>Upgraded
  app-admin/fluent-bit to v1.9.10.</p>\n<h3>Changed</h3>\n<p>Upgraded app-admin/sosreport
  to v4.7.0.</p>\n<h3>Changed</h3>\n<p>Upgraded app-admin/localtoast to v1.1.7.</p>\n<h3>Feature</h3>\n<p>Added
  infiniband and mlx5 device drivers.</p>\n<h3>Fixed</h3>\n<p>Fixed bug in google-guest-agent
  service enablement.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26584 in the Linux
  kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26585 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2023-52434 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26583
  in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26582 in the Linux
  kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52435 in the Linux kernel.</p>\n<h3>Changed</h3>\n<h3
  id=\"cos-101-17162-386-57_\">cos-101-17162-386-57 <a id=\"cos-arm64-101-17162-386-57\"/></h3>\n\n<table
  class=pkg>\n  <tr>\n    <td>Kernel</td>\n    <td>Docker</td>\n    <td>Containerd</td>\n
  \   <td>GPU Drivers</td>\n  </tr>\n  <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/12a5314829cc84c90720b6f3223ff660a218ce95\n\">COS-5.15.146</a></td>\n
  \   <td>v20.10.24</td>\n    <td>v1.6.28</td>\n    <td>v470.239.06(default),v535.161.07(latest)</td>\n
  \ </tr>\n</table>\n<h3>Fixed</h3>\n<p>Fixed bug in google-guest-agent service enablement.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2024-26591 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26589
  in the Linux kernel</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26585 in the Linux
  kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52439 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2023-52434 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52435
  in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52443 in the Linux
  kernel.</p>\n<h3>Changed</h3>\n<h3 id=\"cos-97-16919-450-41_\">cos-97-16919-450-41
  <a id=\"cos-arm64-97-16919-450-41\"/></h3>\n\n<table class=pkg>\n  <tr>\n    <td>Kernel</td>\n
  \   <td>Docker</td>\n    <td>Containerd</td>\n    <td>GPU Drivers</td>\n  </tr>\n
  \ <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/888f6019304c56d32ff9a3d14a09b32683e00a02\n\">COS-5.10.208</a></td>\n
  \   <td>v20.10.24</td>\n    <td>v1.6.21</td>\n    <td>v470.239.06(default),v535.161.07(latest)</td>\n
  \ </tr>\n</table>\n<h3>Fixed</h3>\n<p>Fixed bug in google-guest-agent service enablement.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2024-26589 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26585
  in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52439 in the Linux
  kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52434 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2023-52435 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52443
  in the Linux kernel.</p>\n<h3>Changed</h3>\n<h3 id=\"cos-109-17800-147-41_\">cos-109-17800-147-41
  <a id=\"cos-arm64-109-17800-147-41\"/></h3>\n\n<table class=pkg>\n  <tr>\n    <td>Kernel</td>\n
  \   <td>Docker</td>\n    <td>Containerd</td>\n    <td>GPU Drivers</td>\n  </tr>\n
  \ <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/3265654063acb9af7a134735e634af0a1bbabb93\n\">COS-6.1.75</a></td>\n
  \   <td>v24.0.9</td>\n    <td>v1.7.13</td>\n    <td>v535.161.07(default, latest),v470.239.06(R470
  for compatibility with K80 GPUs)</td>\n  </tr>\n</table>\n<h3>Security</h3>\n<p>Fixed
  CVE-2023-52434 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26583
  in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2024-26582 in the Linux
  kernel.</p>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52435 in the Linux kernel.</p>\n<h3>Changed</h3>\n<h3
  id=\"cos-105-17412-294-48_\">cos-105-17412-294-48 <a id=\"cos-arm64-105-17412-294-48\"/></h3>\n\n<table
  class=pkg>\n  <tr>\n    <td>Kernel</td>\n    <td>Docker</td>\n    <td>Containerd</td>\n
  \   <td>GPU Drivers</td>\n  </tr>\n  <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/98eaca07d1d9c17906fe27fa0f6ce9ae343f448c\n\">COS-5.15.146</a></td>\n
  \   <td>v23.0.3</td>\n    <td>v1.7.10</td>\n    <td>v470.239.06(default),v535.161.07(latest)</td>\n
  \ </tr>\n</table>\n<h3>Security</h3>\n<p>Fixed CVE-2023-52435 in the Linux kernel.</p>\n<h3>Security</h3>\n<p>Fixed
  CVE-2023-52443 in the Linux kernel.</p>\n<h3>Changed</h3>\n<h3 id=\"cos-dev-117-18313-0-0_\">cos-dev-117-18313-0-0
  <a id=\"cos-arm64-dev-117-18313-0-0\"/></h3>\n\n<table class=pkg>\n  <tr>\n    <td>Kernel</td>\n
  \   <td>Docker</td>\n    <td>Containerd</td>\n    <td>GPU Drivers</td>\n  </tr>\n
  \ <tr>\n    <td><a href=\"https://cos.googlesource.com/third_party/kernel/+/691ab6ee9123880f5fb9478cd7a65a0ca5194495\n\">COS-6.1.80</a></td>\n
  \   <td>v24.0.9</td>\n    <td>v1.7.10</td>\n    <td>v535.161.07(default, latest),v470.239.06(R470
  for compatibility with K80 GPUs)</td>\n  </tr>\n</table>\n<h3>Feature</h3>\n<p>Fixed
  integrity-fs dm-crypt creation flakiness.</p>\n<strong class=\"release-note-product-title\">Dataplex</strong>\n<h3>Feature</h3>\n<p><a
  href=\"https://cloud.google.com/dataplex/docs/data-insights\">Data insights in Dataplex</a>
  is now available in <a href=\"https://cloud.google.com/products#product-launch-stages\">Preview</a>.
  Data insights offers an automated and intuitive way to explore and understand your
  data. It uses Gemini large language models to generate queries based on the metadata
  of a table, and lets you uncover patterns, assess data quality, and perform statistical
  analysis.</p>\n<strong class=\"release-note-product-title\">Dataproc</strong>\n<h3>Announcement</h3>\n<p>New
  <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions\">Dataproc
  Serverless for Spark runtime versions</a>:</p>\n\n<ul>\n<li>1.1.56</li>\n<li>1.2.0</li>\n<li>2.0.64</li>\n<li>2.1.43</li>\n<li>2.2.0</li>\n</ul>\n<h3>Announcement</h3>\n<p>Announcing
  the <a href=\"https://cloud.google.com/products#product-launch-stages\">General
  Availability (GA)</a> release of Dataproc Serverless for Spark runtime versions
  <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12\">1.2</a>
  and <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22\">2.2</a>,
  which include the following components:</p>\n\n<ul>\n<li>Spark 3.5.1</li>\n<li>BigQuery
  Spark Connector 0.36.1</li>\n<li>Cloud Storage Connector 3.0.0</li>\n<li>Conda 24.1</li>\n<li>Java
  17</li>\n<li>Python 3.12</li>\n<li>R 4.3</li>\n<li>Scala 2.12 (1.2 runtime) and
  Scala 2.13 (2.2 runtime)</li>\n</ul>\n<h3>Changed</h3>\n<p><strong>Dataproc Serverless
  for Spark:</strong></p>\n\n<ul>\n<li>Upgraded Spark to version <a href=\"https://spark.apache.org/releases/spark-release-3-5-1.html\">3.5.1</a>
  in the latest <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12\">1.2</a>
  and <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22\">2.2</a>
  runtimes.</li>\n<li>Upgraded Conda to version <a href=\"https://github.com/conda/conda/releases/tag/24.1.2\">24.1</a>
  in the latest <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12\">1.2</a>
  and <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22\">2.2</a>
  runtimes.</li>\n<li>Upgraded Spark BigQuery connector to version <a href=\"https://github.com/GoogleCloudDataproc/spark-bigquery-connector/releases/tag/0.36.1\">0.36.1</a>
  in the latest <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_12\">1.2</a>
  and <a href=\"https://cloud.google.com/dataproc-serverless/docs/concepts/versions/spark-runtime-versions#spark_runtime_version_22\">2.2</a>
  runtimes.</li>\n</ul>\n<strong class=\"release-note-product-title\">Firestore</strong>\n<h3>Feature</h3>\n<p>Firestore
  now supports using <a href=\"https://cloud.google.com/firestore/docs/query-data/multiple-range-fields\">range
  and inequality filters on multiple fields</a> in a single query. This feature is
  in <a href=\"https://cloud.google.com/products#product-launch-stages\">Preview</a>.</p>\n<h3>Feature</h3>\n<p>Support
  for <a href=\"https://cloud.google.com/firestore/docs/query-explain\">Query Explain</a>.
  This feature is in <a href=\"https://cloud.google.com/products#product-launch-stages\">Preview</a>.</p>\n\n<p>Query
  Explain lets you submit queries and receive detailed query plan, billing and performance
  statistics on query execution in return. It helps you understand how your queries
  are executed, showing you inefficiencies.</p>\n\n<p>It functions like the <code>EXPLAIN
  [ANALYZE]</code> operation in many relational database systems.</p>\n\n<p>For more
  information, see the <a href=\"https://cloud.google.com/firestore/docs/query-explain\">guide
  for Query Explain</a>.</p>\n<strong class=\"release-note-product-title\">Firestore
  in Datastore mode</strong>\n<h3>Feature</h3>\n<p>Datastore now supports using <a
  href=\"https://cloud.google.com/datastore/docs/multiple-range-fields\">range and
  inequality filters on multiple fields</a> in a single query. This feature is in
  <a href=\"https://cloud.google.com/products#product-launch-stages\">Preview</a>.</p>\n<h3>Feature</h3>\n<p>Support
  for <a href=\"https://cloud.google.com/datastore/docs/query-explain-analyze\">Query
  Explain</a>. This feature is in <a href=\"https://cloud.google.com/products#product-launch-stages\">Preview</a>.</p>\n\n<p>Query
  Explain lets you submit queries and receive detailed query plan, billing and performance
  statistics on query execution in return. It helps you understand how your queries
  are executed, showing you inefficiencies.</p>\n\n<p>It functions like the <code>EXPLAIN
  [ANALYZE]</code> operation in many relational database systems.</p>\n\n<p>For more
  information, see the <a href=\"https://cloud.google.com/datastore/docs/query-explain-analyze\">guide
  for Query Explain</a>.</p>\n<strong class=\"release-note-product-title\">Google
  Cloud Architecture Center</strong>\n<h3>Feature</h3>\n<p>(New guide) <a href=\"https://cloud.google.com/architecture/ai-ml/generative-ai-knowledge-base\">Jump
  Start Solution: Generative AI Knowledge Base</a>: Demonstrates how to build an extractive
  question-answering (EQA) pipeline to produce content for an internal knowledge base.</p>\n<h3>Changed</h3>\n<p><a
  href=\"https://cloud.google.com/architecture/ai-ml\">AI and machine learning resources</a>:
  Added introduction information with guiding links to our generative AI and traditional
  AI resources.</p>\n<strong class=\"release-note-product-title\">Google Distributed
  Cloud Virtual for VMware</strong>\n<h3>Announcement</h3>\n<p>GKE on VMware 1.15.10-gke.32
  is now available. To upgrade, see\n<a href=\"https://cloud.google.com/anthos/clusters/docs/on-prem/1.15/how-to/upgrading\">Upgrading
  GKE on VMware</a>.\nGKE on VMware 1.15.10-gke.32 runs on Kubernetes v1.26.13-gke.1100.
  \ </p>\n\n<p>If you are using a third-party storage vendor, check the\n<a href=\"https://cloud.google.com/anthos/docs/resources/partner-storage\">GDCV
  Ready storage partners</a>\ndocument to make sure the storage vendor has already
  passed the qualification\nfor this release of GKE on VMware.</p>\n<h3>Fixed</h3>\n<p>The
  following issue  is fixed in 1.15.10-gke.32:</p>\n\n<ul>\n<li>Fixed the\n<a href=\"https://cloud.google.com/anthos/clusters/docs/on-prem/latest/troubleshooting/known-issues#controlplanenodeport-field-defaults-to-30968-when-manuallb-spec-is-empty\">known
  issue</a> where the\n<code>controlPlaneNodePort</code> field defaults to 30968 when
  the <code>manualLB</code> spec is empty.</li>\n</ul>\n\n<p>The following vulnerabilities
  are fixed in 1.15.10-gke.32:</p>\n\n<ul>\n<li><p>High-severity container vulnerabilities:</p>\n\n<ul>\n<li><a
  href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24806\">CVE-2024-24806</a></li>\n</ul></li>\n<li><p>Container-optimized
  OS vulnerabilities:</p>\n\n<ul>\n<li><p><a href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25062\">CVE-2024-25062</a></p></li>\n<li><p><a
  href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3566\">CVE-2022-3566</a></p></li>\n<li><p><a
  href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1086\">CVE-2024-1086</a></p></li>\n<li><p><a
  href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24557\">CVE-2024-24557</a></p></li>\n</ul></li>\n</ul>\n\n
  \   "
title_type:
published: &1 2024-03-27 07:00:00.000000000 Z
updated: *1
links:
- https://cloud.google.com/release-notes#March_27_2024
title: March 27, 2024
carlessian_info:
  news_filer_version: 2
  newspaper: GCP latest releases
  macro_region: Technology
rss_fields:
- entry_id
- content
- title_type
- published
- updated
- links
- title
categories: []
url: https://cloud.google.com/release-notes#March_27_2024

Language

Active

Ricc internal notes

Ricc source

Show this article Back to articles