🗞️February 26, 2024

🗿Semantically Similar Articles (by :title_embedding)

🗄️ 0.0 🔗 Feb28 February 28, 2024 (📰 GCP latest releases)
🗄️ 0.0 🔗 Feb29 February 29, 2024 (📰 GCP latest releases)
🗄️ 0.0 🔗 Feb24 February 24, 2024 (📰 GCP latest releases)
🗄️ 0.0 🔗 Feb27 February 27, 2024 (📰 GCP latest releases)
🗄️ 0.0 🔗 Feb22 February 22, 2024 (📰 GCP latest releases)

February 26, 2024

2024-02-26 - (from GCP latest releases)

Anthos clusters on AWS Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-3776 For more information, see the GCP-2024-014 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2024-0193 For more information, see the GCP-2024-013 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-6932 For more information, see the GCP-2024-011 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes. CVE-2023-6931 For more information, see the GCP-2024-010 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes. CVE-2023-6817 For more information, see the GCP-2024-004 security bulletin. Anthos clusters on Azure Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-3776 For more information, see the GCP-2024-014 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2024-0193 For more information, see the GCP-2024-013 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-6932 For more information, see the GCP-2024-011 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes. CVE-2023-6931 For more information, see the GCP-2024-010 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes. CVE-2023-6817 For more information, see the GCP-2024-004 security bulletin. App Engine flexible environment Go Feature Go 1.22 is now available in preview. App Engine flexible environment Java Feature Java 21 is now generally available. App Engine flexible environment PHP Feature PHP 8.3 is now generally available. App Engine standard environment Go Feature Go 1.22 is now available in preview. App Engine standard environment Java Feature Java 21 is now generally available. App Engine standard environment PHP Feature PHP 8.3 is now generally available. BigQuery Libraries A weekly digest of client library updates from across the Cloud SDK. JavaChanges for google-cloud-bigquery 2.38.0 (2024-02-22) Features Add MetadataCacheStatistics to Job QueryStatistics (#3133) (f3f387b) Dependencies Update dependency com.google.apis:google-api-services-bigquery to v2-rev20240211-2.0.0 (#3152) (e5d6888) Update github/codeql-action action to v2.24.3 (#3148) (a0a7b01) Update github/codeql-action action to v2.24.3 (#3150) (042fcf0) Update github/codeql-action action to v2.24.4 (#3161) (531b1a0) Feature The BigQuery Data Transfer Service can now transfer data from the following data sources: Facebook Ads Oracle Salesforce Salesforce Marketing Cloud ServiceNow Transfers from these data sources are supported in preview. Feature The following SQL features are now generally available (GA): GROUP BY GROUPING SETS clause: Produces aggregated data for one or more grouping sets. GROUP BY CUBE clause: Produces aggregated data for all grouping set permutations. GROUPING function: Checks if a groupable value in the GROUP BY clause is aggregated. Feature The GROUP BY ALL clause, which groups rows by inferring grouping keys from the SELECT items, is now in preview. Bigtable Libraries A weekly digest of client library updates from across the Cloud SDK. JavaChanges for google-cloud-bigtable 2.34.0 (2024-02-21) Features Add the export logic for per-connection error rate metric (#2121) (d053f2d) Create the backbone of counting errors per connection each minute. (#2094) (7d27816) Dependencies Update actions/setup-java action to v4 (#2106) (a694296) Update dependency com.google.cloud:gapic-libraries-bom to v1.30.0 (#2126) (f613bd0) Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#2113) (ba1973e) Update dependency com.google.truth.extensions:truth-proto-extension to v1.4.1 (#2119) (0a7ad66) Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.1 (#2122) (99ec284) Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#2123) (12d961a) Buildpacks Feature Starting in Go version 1.22 and later, you can no longer use GOPATH for installing dependencies. To manage dependencies, you use a go.mod file. For more information about Go versions, and managing dependencies for vendor directories, see GOPATH and Modules in Go documentation. Cloud Asset Inventory Feature The following resource types are now publicly available through the ExportAssets, ListAssets, BatchGetAssetsHistory, QueryAssets, Feed, and Search (SearchAllResources, SearchAllIamPolicies) APIs. GKE Hub gkehub.googleapis.com/Fleet gkehub.googleapis.com/Scope gkehub.googleapis.com/Namespace gkehub.googleapis.com/MembershipBinding gkehub.googleapis.com/RBACRoleBinding AI Platform aiplatform.googleapis.com/NotebookRuntime aiplatform.googleapis.com/NotebookRuntimeTemplate Cloud Composer Changed Starting February 27, 2024, in the us-central1, europe-west1, europe-west2, europe-west3, europe-west6, us-east1, and us-east4 regions it is possible to create new Cloud Composer 1 environments only in projects that already have Cloud Composer 1 environments. In all other existing or newly created projects in these regions, it is possible to create only Cloud Composer 2 environments. This change is a part of the preparation for Cloud Composer 1 end of support, as communicated earlier and described in the Versioning overview. Cloud Functions Feature Cloud Functions now supports the PHP 8.3 and Java 21 runtimes at the General Availability release level for 2nd gen functions. Feature Cloud Functions now supports the Go 1.22 runtime at the Preview release level. Cloud Logging Libraries A weekly digest of client library updates from across the Cloud SDK. JavaChanges for google-cloud-logging 3.16.0 (2024-02-20) Features Add an API method for reordering firewall policies (#1538) (9cd6b96) Dependencies Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#1535) (7fde779) Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.0 (#1528) (b3e4f9b) Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.0 (#1456) (f27713e) Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#1542) (af784bc) Update dependency org.junit.vintage:junit-vintage-engine to v5.10.2 (#1530) (20981dc) Confidential VM Feature Live migration is now available on new Confidential VM instances that meet the following configuration criteria: An N2D machine type with AMD EPYC Milan CPU platform AMD SEV Confidential Computing technology An operating system image that supports live migration Dataform Announcement Dataform is available in the us-south1 region. For more information, see Locations. Eventarc Changed Eventarc is available in the us-west8 (Phoenix, Arizona, North America) region. Google Distributed Cloud Virtual for VMware Announcement GKE on VMware 1.28.200-gke.111 is now available. To upgrade, see Upgrading Anthos clusters on VMware. GKE on VMware 1.28.200-gke.111 runs on Kubernetes v1.28.4-gke.1400. If you are using a third-party storage vendor, check the GDCV Ready storage partners document to make sure the storage vendor has already passed the qualification for this release of GKE on VMware. Fixed The following issues are fixed in 1.28.200-gke.111: Fixed the known issue that caused a preflight check to fail when the hostname isn't in the IP block file. Fixed the known issue where the storage policy field is missing in the admin cluster configuration template. Fixed the manual load balancer issue where the IngressIP is overwritten with the Spec.LoadBalancerIP even if it is empty. Fixed the issue that preflight jobs might be stuck in the pending state. Fixed the known issue where nfs-common is missing from the Ubuntu OS image. The following vulnerabilities are fixed in 1.28.200-gke.111: Critical container vulnerabilities: CVE-2022-1996 High-severity container vulnerabilities: CVE-2023-2253 Container-optimized OS vulnerabilities: CVE-2023-6531 Ubuntu vulnerabilities: CVE-2023-6040 CVE-2023-6606 CVE-2023-6817 CVE-2023-6931 CVE-2023-6932 CVE-2024-0193 CVE-2023-23583 Google Kubernetes Engine Changed This note was updated on March 20, 2024. The links to the security bulletins related to CVE-2024-0193 and CVE-2023-3610 have been updated. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-3776 For more information, see the GCP-2024-014 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2024-0193 For more information, see the GCP-2024-012 security bulletin. Security The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes: CVE-2023-3610 For more information, see the GCP-2024-013 security bulletin. Feature GKE now supports Gemma (2B, 7B), Google's new state-of-the-art open models. To learn more, refer to the following guides: Serve Gemma on GKE with GPUs using Hugging Face TGI Serve Gemma on GKE with GPUs using vLLM Serve Gemma on GKE with GPUs using TensorRT-LLM Serve Gemma on GKE with TPUs using SaxML Deployment to GKE is also supported via Vertex AI Model Garden as part of our Hugging Face, Vertex AI, and GKE integration. Migrate to Virtual Machines Feature Generally available: Migrate to Virtual Machines lets you migrate virtual machine (VM) disks to Persistent Disk volumes on Google Cloud. The migrated disks can be attached to a new VM during the migration process, or an existing VM after the migration is complete. Policy Intelligence Feature The IAM recommender offers role recommendations for BigQuery datasets. Role recommendations help you reduce excess permissions by suggesting role changes based on actual permission usage. This feature is available in Preview. Pub/Sub Libraries A weekly digest of client library updates from across the Cloud SDK. PythonChanges for google-cloud-pubsub 2.19.6 (2024-02-23) Bug Fixes Remove LOGGER.exception() line (#1087) (a395d26) 2.19.5 (2024-02-22) Bug Fixes Update system_test_python_versions (#1096) (c659ac7) Spanner Feature The following GoogleSQL JSON functions are now generally available (GA): LAX_BOOL: Attempts to convert a JSON value to a SQL BOOL value. LAX_FLOAT64: Attempts to convert a JSON value to a SQL FLOAT64 value. LAX_INT64: Attempts to convert a JSON value to a SQL INT64 value. LAX_STRING: Attempts to convert a JSON value to a SQL STRING value. BOOL: Converts a JSON boolean to a SQL BOOL value. FLOAT64: Converts a JSON number to a SQL FLOAT64 value. INT64: Converts a JSON number to a SQL INT64 value. STRING: Converts a JSON string to a SQL STRING value. JSON_TYPE: Gets the JSON type of the outermost JSON value and converts the name of this type to a SQL STRING value. Text-to-Speech Announcement Studio voices are now GA. Announcement Casual voices are now in preview. Vertex AI Feature Ground Multimodal Models Model grounding for gemini-pro is available in Preview. Use grounding to connect the gemini-pro model to unstructured text data stores in Vertex AI Search. Grounding lets models access and use the information in the data repositories to generate more enhanced and nuanced responses. For more information, see Ground multimodal models. Vertex AI Search and Conversation Feature Vertex AI Search: Use Terraform to create search apps You can use Terraform to create search apps for your Vertex AI Search. For information, see Create a search app. Virtual Private Cloud Changed The VPC documentation has been updated with a new page that describes which services in Google Cloud include support for IPv6. For more information, see IPv6 support in Google Cloud.

[Technology] 🌎 https://cloud.google.com/release-notes#February_26_2024

🗿article.to_s

------------------------------
Title: February 26, 2024
[content]
Anthos clusters on AWS
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2023-3776

For more information, see the GCP-2024-014 security bulletin.

Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2024-0193

For more information, see the GCP-2024-013 security bulletin.
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2023-6932

For more information, see the GCP-2024-011 security bulletin.
Security
The following vulnerabilities were discovered in the Linux kernel that can lead
to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

CVE-2023-6931

For more information, see the GCP-2024-010 security bulletin.
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

CVE-2023-6817

For more information, see the GCP-2024-004 security bulletin.
Anthos clusters on Azure
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2023-3776

For more information, see the GCP-2024-014 security bulletin.

Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2024-0193

CVE-2023-6932

CVE-2023-6931

CVE-2023-6817

For more information, see the GCP-2024-004 security bulletin.
App Engine flexible environment Go
Feature
Go 1.22 is now available in preview.
App Engine flexible environment Java
Feature
Java 21 is now generally available.
App Engine flexible environment PHP
Feature
PHP 8.3 is now generally available.
App Engine standard environment Go
Feature
Go 1.22 is now available in preview.
App Engine standard environment Java
Feature
Java 21 is now generally available.
App Engine standard environment PHP
Feature
PHP 8.3 is now generally available.
BigQuery
Libraries
A weekly digest of client library updates from across the Cloud SDK.

JavaChanges for google-cloud-bigquery

2.38.0 (2024-02-22)

Features

Add MetadataCacheStatistics to Job QueryStatistics (#3133) (f3f387b)

Dependencies

Update dependency com.google.apis:google-api-services-bigquery to v2-rev20240211-2.0.0 (#3152) (e5d6888)
Update github/codeql-action action to v2.24.3 (#3148) (a0a7b01)
Update github/codeql-action action to v2.24.3 (#3150) (042fcf0)
Update github/codeql-action action to v2.24.4 (#3161) (531b1a0)

Feature
The BigQuery Data Transfer Service can now transfer data from the following data sources:

Facebook Ads
Oracle
Salesforce
Salesforce Marketing Cloud
ServiceNow

Transfers from these data sources are supported in preview.
Feature
The following SQL features are now generally available (GA):

GROUP BY GROUPING SETS clause: Produces aggregated data for one or more grouping sets.
GROUP BY CUBE clause: Produces aggregated data for all grouping set permutations.
GROUPING function: Checks if a groupable value in the GROUP BY clause is aggregated.

Feature
The GROUP BY ALL clause, which groups rows by inferring grouping keys from the SELECT items, is now in preview.
Bigtable
Libraries
A weekly digest of client library updates from across the Cloud SDK.

JavaChanges for google-cloud-bigtable

2.34.0 (2024-02-21)

Features

Add the export logic for per-connection error rate metric (#2121) (d053f2d)
Create the backbone of counting errors per connection each minute. (#2094) (7d27816)

Dependencies

Update actions/setup-java action to v4 (#2106) (a694296)
Update dependency com.google.cloud:gapic-libraries-bom to v1.30.0 (#2126) (f613bd0)
Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#2113) (ba1973e)
Update dependency com.google.truth.extensions:truth-proto-extension to v1.4.1 (#2119) (0a7ad66)
Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.1 (#2122) (99ec284)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#2123) (12d961a)

Buildpacks
Feature
Starting in Go version 1.22 and later, you can no longer use GOPATH for installing dependencies. To manage dependencies, you use a go.mod file. For more information about Go versions, and managing dependencies for vendor directories, see GOPATH and Modules in Go documentation.
Cloud Asset Inventory
Feature
The following resource types are now publicly available through the ExportAssets, ListAssets, BatchGetAssetsHistory, QueryAssets, Feed, and Search (SearchAllResources, SearchAllIamPolicies) APIs.

GKE Hub

gkehub.googleapis.com/Fleet
gkehub.googleapis.com/Scope
gkehub.googleapis.com/Namespace
gkehub.googleapis.com/MembershipBinding
gkehub.googleapis.com/RBACRoleBinding

AI Platform

aiplatform.googleapis.com/NotebookRuntime
aiplatform.googleapis.com/NotebookRuntimeTemplate

Cloud Composer
Changed
Starting February 27, 2024, in the us-central1, europe-west1, europe-west2, europe-west3, europe-west6, us-east1, and us-east4 regions it is possible to create new Cloud Composer 1 environments only in projects that already have Cloud Composer 1 environments.

In all other existing or newly created projects in these regions, it is possible to create only Cloud Composer 2 environments. This change is a part of the preparation for Cloud Composer 1 end of support, as communicated earlier and described in the Versioning overview.
Cloud Functions
Feature
Cloud Functions now supports the PHP 8.3 and Java 21 runtimes at the General Availability release level for 2nd gen functions.
Feature
Cloud Functions now supports the Go 1.22 runtime at the Preview release level.
Cloud Logging
Libraries
A weekly digest of client library updates from across the Cloud SDK.

JavaChanges for google-cloud-logging

3.16.0 (2024-02-20)

Features

Add an API method for reordering firewall policies (#1538) (9cd6b96)

Dependencies

Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#1535) (7fde779)
Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.0 (#1528) (b3e4f9b)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.0 (#1456) (f27713e)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#1542) (af784bc)
Update dependency org.junit.vintage:junit-vintage-engine to v5.10.2 (#1530) (20981dc)

Confidential VM
Feature
Live migration is now available on new Confidential VM instances that meet the following configuration criteria:

An N2D machine type with AMD EPYC Milan CPU platform
AMD SEV Confidential Computing technology
An operating system image that supports live migration

Dataform
Announcement
Dataform is available in the us-south1 region.
For more information, see Locations.
Eventarc
Changed
Eventarc is available in the us-west8 (Phoenix, Arizona, North America) region.
Google Distributed Cloud Virtual for VMware
Announcement
GKE on VMware 1.28.200-gke.111 is now available. To upgrade, see
Upgrading Anthos clusters on VMware.
GKE on VMware 1.28.200-gke.111 runs on Kubernetes v1.28.4-gke.1400.

If you are using a third-party storage vendor, check the
GDCV Ready storage partners
document to make sure the storage vendor has already passed the qualification
for this release of GKE on VMware.
Fixed
The following issues are fixed in 1.28.200-gke.111:

Fixed the
known issue
that caused a preflight check to fail when the hostname isn't in the IP
block file.
Fixed the
known issue
where the storage policy field is missing in the admin cluster
configuration template.
Fixed the manual load balancer issue where the IngressIP is overwritten
with the Spec.LoadBalancerIP even if it is empty.
Fixed the issue that preflight jobs might be stuck in the pending state.
Fixed the
known issue
where nfs-common is missing from the Ubuntu OS image.

The following vulnerabilities are fixed in 1.28.200-gke.111:

Critical container vulnerabilities:

CVE-2022-1996

High-severity container vulnerabilities:

CVE-2023-2253

Container-optimized OS vulnerabilities:

CVE-2023-6531

Ubuntu vulnerabilities:

CVE-2023-6040
CVE-2023-6606
CVE-2023-6817
CVE-2023-6931
CVE-2023-6932
CVE-2024-0193
CVE-2023-23583

Google Kubernetes Engine
Changed
This note was updated on March 20, 2024. The links to the security bulletins related to CVE-2024-0193 and CVE-2023-3610 have been updated.
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2023-3776

For more information, see the GCP-2024-014 security bulletin.

Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2024-0193

For more information, see the GCP-2024-012 security bulletin.
Security
The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

CVE-2023-3610

For more information, see the GCP-2024-013 security bulletin.
Feature
GKE now supports Gemma (2B, 7B), Google's new state-of-the-art open models. To learn more, refer to the following guides:

Serve Gemma on GKE with GPUs using Hugging Face TGI
Serve Gemma on GKE with GPUs using vLLM
Serve Gemma on GKE with GPUs using TensorRT-LLM
Serve Gemma on GKE with TPUs using SaxML

Deployment to GKE is also supported via Vertex AI Model Garden as part of our Hugging Face, Vertex AI, and GKE integration.
Migrate to Virtual Machines
Feature
Generally available: Migrate to Virtual Machines lets you migrate virtual machine (VM) disks to Persistent Disk volumes on Google Cloud. The migrated disks can be attached to a new VM during the migration process, or an existing VM after the migration is complete.
Policy Intelligence
Feature
The IAM recommender offers role recommendations for BigQuery datasets. Role recommendations help you reduce excess permissions by suggesting role changes based on actual permission usage. This feature is available in Preview.
Pub/Sub
Libraries
A weekly digest of client library updates from across the Cloud SDK.

PythonChanges for google-cloud-pubsub

2.19.6 (2024-02-23)

Bug Fixes

Remove LOGGER.exception() line (#1087) (a395d26)

2.19.5 (2024-02-22)

Bug Fixes

Update system_test_python_versions (#1096) (c659ac7)

Spanner
Feature
The following GoogleSQL JSON functions are now generally available (GA):

LAX_BOOL: Attempts to convert a JSON value to a SQL BOOL value.
LAX_FLOAT64: Attempts to convert a JSON value to a
SQL FLOAT64 value.
LAX_INT64: Attempts to convert a JSON value to a SQL INT64 value.
LAX_STRING: Attempts to convert a JSON value to a SQL STRING value.
BOOL: Converts a JSON boolean to a SQL BOOL value.
FLOAT64: Converts a JSON number to a SQL
FLOAT64 value.
INT64: Converts a JSON number to a SQL INT64 value.
STRING: Converts a JSON string to a SQL STRING value.
JSON_TYPE: Gets the JSON type of the outermost JSON value and converts the name of
this type to a SQL STRING value.

Text-to-Speech
Announcement
Studio voices are now GA.
Announcement
Casual voices are now in preview.
Vertex AI
Feature
Ground Multimodal Models

Model grounding for gemini-pro is available in Preview. Use grounding to
connect the gemini-pro model to unstructured text data stores in Vertex AI Search. Grounding lets models access and use the information in the data repositories to generate more enhanced and nuanced responses.
For more information, see Ground multimodal models.
Vertex AI Search and Conversation
Feature
Vertex AI Search: Use Terraform to create search apps

You can use Terraform to create search apps for your Vertex AI Search.

For information, see Create a search app.
Virtual Private Cloud
Changed
The VPC documentation has been updated with a new page that describes which services in Google Cloud include support for IPv6. For more information, see IPv6 support in Google Cloud.
[/content]

PublishedDate: 2024-02-26
Category: Technology
NewsPaper: GCP latest releases

{"id"=>837,
"title"=>"February 26, 2024",
"summary"=>nil,
"content"=>"Anthos clusters on AWS\n

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-3776
\n\n
For more information, see the GCP-2024-014 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2024-0193

\n\n

For more information, see the GCP-2024-013 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-6932

\n\n

For more information, see the GCP-2024-011 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead\nto a privilege escalation on Container-Optimized OS and Ubuntu nodes.

\n\n

CVE-2023-6931

\n\n

For more information, see the GCP-2024-010 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

\n\n

CVE-2023-6817

\n\n

For more information, see the GCP-2024-004 security bulletin.

\nAnthos clusters on Azure\n

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-3776
\n\n
For more information, see the GCP-2024-014 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2024-0193

\n\n

For more information, see the GCP-2024-013 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-6932

\n\n

For more information, see the GCP-2024-011 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead\nto a privilege escalation on Container-Optimized OS and Ubuntu nodes.

\n\n

CVE-2023-6931

\n\n

For more information, see the GCP-2024-010 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

\n\n

CVE-2023-6817

\n\n

For more information, see the GCP-2024-004 security bulletin.

\nApp Engine flexible environment Go\n

Feature

Go 1.22 is now available in preview.

\nApp Engine flexible environment Java\n

Feature

Java 21 is now generally available.

\nApp Engine flexible environment PHP\n

Feature

PHP 8.3 is now generally available.

\nApp Engine standard environment Go\n

Feature

Go 1.22 is now available in preview.

\nApp Engine standard environment Java\n

Feature

Java 21 is now generally available.

\nApp Engine standard environment PHP\n

Feature

PHP 8.3 is now generally available.

\nBigQuery\n

Libraries

A weekly digest of client library updates from across the Cloud SDK.

Java

Changes for google-cloud-bigquery

\n\n

2.38.0 (2024-02-22)

\n\n

Features

\n\n

Add MetadataCacheStatistics to Job QueryStatistics (#3133) (f3f387b)

\n\n

Dependencies

\n\n

Update dependency com.google.apis:google-api-services-bigquery to v2-rev20240211-2.0.0 (#3152) (e5d6888)
Update github/codeql-action action to v2.24.3 (#3148) (a0a7b01)
Update github/codeql-action action to v2.24.3 (#3150) (042fcf0)
Update github/codeql-action action to v2.24.4 (#3161) (531b1a0)

Feature

The BigQuery Data Transfer Service can now transfer data from the following data sources:

\n\n

Transfers from these data sources are supported in preview.

Feature

The following SQL features are now generally available (GA):

\n\n

GROUP BY GROUPING SETS clause: Produces aggregated data for one or more grouping sets.
GROUP BY CUBE clause: Produces aggregated data for all grouping set permutations.
GROUPING function: Checks if a groupable value in the GROUP BY clause is aggregated.

Feature

The GROUP BY ALL clause, which groups rows by inferring grouping keys from the SELECT items, is now in preview.

\nBigtable\n

Libraries

A weekly digest of client library updates from across the Cloud SDK.

Java

Changes for google-cloud-bigtable

\n\n

2.34.0 (2024-02-21)

\n\n

Features

\n\n

Add the export logic for per-connection error rate metric (#2121) (d053f2d)
Create the backbone of counting errors per connection each minute. (#2094) (7d27816)

\n\n

Dependencies

\n\n

Update actions/setup-java action to v4 (#2106) (a694296)
Update dependency com.google.cloud:gapic-libraries-bom to v1.30.0 (#2126) (f613bd0)
Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#2113) (ba1973e)
Update dependency com.google.truth.extensions:truth-proto-extension to v1.4.1 (#2119) (0a7ad66)
Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.1 (#2122) (99ec284)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#2123) (12d961a)

\nBuildpacks\n

Feature

Starting in Go version 1.22 and later, you can no longer use GOPATH for installing dependencies. To manage dependencies, you use a go.mod file. For more information about Go versions, and managing dependencies for vendor directories, see GOPATH and Modules in Go documentation.

\nCloud Asset Inventory\n

Feature

The following resource types are now publicly available through the ExportAssets, ListAssets, BatchGetAssetsHistory, QueryAssets, Feed, and Search (SearchAllResources, SearchAllIamPolicies) APIs.

\n\n

GKE Hub\n
- gkehub.googleapis.com/Fleet
- gkehub.googleapis.com/Scope
- gkehub.googleapis.com/Namespace
- gkehub.googleapis.com/MembershipBinding
- gkehub.googleapis.com/RBACRoleBinding
AI Platform\n
- aiplatform.googleapis.com/NotebookRuntime
- aiplatform.googleapis.com/NotebookRuntimeTemplate

\nCloud Composer\n

Changed

Starting February 27, 2024, in the us-central1, europe-west1, europe-west2, europe-west3, europe-west6, us-east1, and us-east4 regions it is possible to create new Cloud Composer 1 environments only in projects that already have Cloud Composer 1 environments.

\n\n

\nCloud Functions\n

Feature

Cloud Functions now supports the PHP 8.3 and Java 21 runtimes at the General Availability release level for 2nd gen functions.

Feature

Cloud Functions now supports the Go 1.22 runtime at the Preview release level.

\nCloud Logging\n

Libraries

A weekly digest of client library updates from across the Cloud SDK.

Java

Changes for google-cloud-logging

\n\n

3.16.0 (2024-02-20)

\n\n

Features

\n\n

Add an API method for reordering firewall policies (#1538) (9cd6b96)

\n\n

Dependencies

\n\n

Update dependency com.google.cloud:sdk-platform-java-config to v3.25.0 (#1535) (7fde779)
Update dependency org.graalvm.buildtools:junit-platform-native to v0.10.0 (#1528) (b3e4f9b)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.0 (#1456) (f27713e)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#1542) (af784bc)
Update dependency org.junit.vintage:junit-vintage-engine to v5.10.2 (#1530) (20981dc)

\nConfidential VM\n

Feature

Live migration is now available on new Confidential VM instances that meet the following configuration criteria:

\n\n

An N2D machine type with AMD EPYC Milan CPU platform
AMD SEV Confidential Computing technology
An operating system image that supports live migration

\nDataform\n

Announcement

Dataform is available in the us-south1 region.\nFor more information, see Locations.

\nEventarc\n

Changed

Eventarc is available in the us-west8 (Phoenix, Arizona, North America) region.

\nGoogle Distributed Cloud Virtual for VMware\n

Announcement

GKE on VMware 1.28.200-gke.111 is now available. To upgrade, see\nUpgrading Anthos clusters on VMware.\nGKE on VMware 1.28.200-gke.111 runs on Kubernetes v1.28.4-gke.1400.

\n\n

If you are using a third-party storage vendor, check the\nGDCV Ready storage partners\ndocument to make sure the storage vendor has already passed the qualification\nfor this release of GKE on VMware.

Fixed

The following issues are fixed in 1.28.200-gke.111:

\n\n

Fixed the \nknown issue\nthat caused a preflight check to fail when the hostname isn't in the IP\nblock file.
Fixed the\nknown issue\nwhere the storage policy field is missing in the admin cluster\nconfiguration template.
Fixed the manual load balancer issue where the IngressIP is overwritten\nwith the Spec.LoadBalancerIP even if it is empty.
Fixed the issue that preflight jobs might be stuck in the pending state.
Fixed the\nknown issue\nwhere nfs-common is missing from the Ubuntu OS image.

\n\n

The following vulnerabilities are fixed in 1.28.200-gke.111:

\n\n

Critical container vulnerabilities:
\n\n
- CVE-2022-1996
High-severity container vulnerabilities:
\n\n
- CVE-2023-2253
Container-optimized OS vulnerabilities:
\n\n
- CVE-2023-6531
Ubuntu vulnerabilities:
\n\n
- CVE-2023-6040
- CVE-2023-6606
- CVE-2023-6817
- CVE-2023-6931
- CVE-2023-6932
- CVE-2024-0193
- CVE-2023-23583

\nGoogle Kubernetes Engine\n

Changed

This note was updated on March 20, 2024. The links to the security bulletins related to CVE-2024-0193 and CVE-2023-3610 have been updated.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-3776
\n\n
For more information, see the GCP-2024-014 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2024-0193

\n\n

For more information, see the GCP-2024-012 security bulletin.

Security

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes:

\n\n

CVE-2023-3610

\n\n

For more information, see the GCP-2024-013 security bulletin.

Feature

GKE now supports Gemma (2B, 7B), Google's new state-of-the-art open models. To learn more, refer to the following guides:

\n\n

Deployment to GKE is also supported via Vertex AI Model Garden as part of our Hugging Face, Vertex AI, and GKE integration.

\nMigrate to Virtual Machines\n

Feature

Generally available: Migrate to Virtual Machines lets you migrate virtual machine (VM) disks to Persistent Disk volumes on Google Cloud. The migrated disks can be attached to a new VM during the migration process, or an existing VM after the migration is complete.

\nPolicy Intelligence\n

Feature

The IAM recommender offers role recommendations for BigQuery datasets. Role recommendations help you reduce excess permissions by suggesting role changes based on actual permission usage. This feature is available in Preview.

\nPub/Sub\n

Libraries

A weekly digest of client library updates from across the Cloud SDK.

Python

Changes for google-cloud-pubsub

\n\n

2.19.6 (2024-02-23)

\n\n

Bug Fixes

\n\n

Remove LOGGER.exception() line (#1087) (a395d26)

\n\n

2.19.5 (2024-02-22)

\n\n

Bug Fixes

\n\n

Update system_test_python_versions (#1096) (c659ac7)

\nSpanner\n

Feature

The following GoogleSQL JSON functions are now generally available (GA):

\n\n

LAX_BOOL: Attempts to convert a JSON value to a SQL BOOL value.
LAX_FLOAT64: Attempts to convert a JSON value to a\nSQL FLOAT64 value.
LAX_INT64: Attempts to convert a JSON value to a SQL INT64 value.
LAX_STRING: Attempts to convert a JSON value to a SQL STRING value.
BOOL: Converts a JSON boolean to a SQL BOOL value.
FLOAT64: Converts a JSON number to a SQL\nFLOAT64 value.
INT64: Converts a JSON number to a SQL INT64 value.
STRING: Converts a JSON string to a SQL STRING value.
JSON_TYPE: Gets the JSON type of the outermost JSON value and converts the name of\nthis type to a SQL STRING value.

\nText-to-Speech\n

Announcement

Studio voices are now GA.

Announcement

Casual voices are now in preview.

\nVertex AI\n

Feature

Ground Multimodal Models

\n\n

Model grounding for gemini-pro is available in Preview. Use grounding to\nconnect the gemini-pro model to unstructured text data stores in Vertex AI Search. Grounding lets models access and use the information in the data repositories to generate more enhanced and nuanced responses.\nFor more information, see Ground multimodal models.

\nVertex AI Search and Conversation\n

Feature

Vertex AI Search: Use Terraform to create search apps

\n\n

You can use Terraform to create search apps for your Vertex AI Search.

\n\n

For information, see Create a search app.

\nVirtual Private Cloud\n

Changed

The VPC documentation has been updated with a new page that describes which services in Google Cloud include support for IPv6. For more information, see IPv6 support in Google Cloud.

\n\n ",
"author"=>nil,
"link"=>"https://cloud.google.com/release-notes#February_26_2024",
"published_date"=>Mon, 26 Feb 2024 08:00:00.000000000 UTC +00:00,
"image_url"=>nil,
"feed_url"=>"https://cloud.google.com/release-notes#February_26_2024",
"language"=>nil,
"active"=>true,
"ricc_source"=>"feedjira::v1",
"created_at"=>Sun, 31 Mar 2024 21:42:29.774580000 UTC +00:00,
"updated_at"=>Mon, 13 May 2024 18:44:09.717358000 UTC +00:00,
"newspaper"=>"GCP latest releases",
"macro_region"=>"Technology"}

Edit this article

Back to articles