Kubernetes - v1.24.9

Security

Changelog since v1.24.8

Changes by Kind

Feature

  • Kubeadm: use the image registry registry.k8s.io instead of k8s.gcr.io for new clusters. During upgrade, migrate users to registry.k8s.io if they were using the default of k8s.gcr.io. (#113395, @neolit123) [SIG Cloud Provider and Cluster Lifecycle]
  • Kubernetes is now built with Go 1.18.9 (#114287, @xmudrii) [SIG Release and Testing]

Bug or Regression

  • Fix endpoint reconciler not being able to delete the apiserver lease on shutdown (#114138, @aojea) [SIG API Machinery]
  • Fix for volume reconstruction of CSI ephemeral volumes (#113346, @dobsonj) [SIG Node, Storage and Testing]
  • Kube-apiserver: resolves possible hung connections using konnectivity network proxy with TCP or UDS HTTP connect configurations (#113862, @jkh52) [SIG API Machinery]
  • Resolves an issue that causes winkernel proxier to treat stale VIPs as valid (#113567, @daschott) [SIG Network and Windows]
  • Updates golang.org/x/net to fix CVE-2022-41717 (#114322, @liggitt) [SIG API Machinery, Architecture, Auth, CLI, Cloud Provider, Cluster Lifecycle, Instrumentation, Node and Storage]
  • Updates golang.org/x/net to v0.1.1-0.20221027164007-c63010009c80 to resolve CVE-2022-27664 (#113459, @aimuz) [SIG API Machinery, Architecture, Auth, CLI, Cloud Provider, Cluster Lifecycle, Instrumentation, Node, Release and Storage]
  • Volumes are no longer detached from healthy nodes after 6 minutes timeout. 6 minute force-detach timeout is used only for unhealthy nodes (node.status.conditions["Ready"] != true). (#110721, @jsafrane) [SIG Apps]

Other (Cleanup or Flake)

  • Kubelet now defaults to pulling the pause image from registry.k8s.io (#114341, @liggitt) [SIG Node]

Dependencies

Added

Nothing has changed.

Changed

  • github.com/yuin/goldmark: v1.4.1 → v1.4.13
  • golang.org/x/mod: 9b9b3d8 → 86c51ed
  • golang.org/x/net: cd36cc0 → 1e63c2f
  • golang.org/x/sync: 036812b → 886fb93
  • golang.org/x/sys: 3681064 → v0.3.0
  • golang.org/x/term: 03fcf44 → v0.3.0
  • golang.org/x/text: v0.3.7 → v0.5.0
  • golang.org/x/tools: 897bd77 → v0.1.12

Removed

Nothing has changed.


Details

date
Dec. 8, 2022, 6:14 p.m.
name
Kubernetes v1.24.9
type
Patch
👇
Register or login to:
  • 🔍View and search all Kubernetes releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or