IBM Cloud Docs
Kubernetes version 1.30 change log

Kubernetes version 1.30 change log

View information about version changes for major, minor, and patch updates that are available for your IBM Cloud® Kubernetes Service clusters that run version 1.30. Changes include updates to Kubernetes and IBM Cloud Provider components.

Overview

In Kubernetes, most new beta features are disabled by default. Alpha features, which are subject to change, are disabled in all versions. For more information, see the Default service settings for Kubernetes components and the feature gates for each version.

For more information about major, minor, and patch versions and preparation actions between minor versions, see Kubernetes versions.

Check the Security Bulletins on IBM Cloud Status for security vulnerabilities that affect IBM Cloud Kubernetes Service. You can filter the results to view only Kubernetes Cluster security bulletins that are relevant to IBM Cloud Kubernetes Service. Change log entries that address other security vulnerabilities but don't also refer to an IBM security bulletin are for vulnerabilities that are not known to affect IBM Cloud Kubernetes Service in normal usage. If you run privileged containers, run commands on the workers, or execute untrusted code, then you might be at risk.

Some change logs are for worker node fix packs, and apply only to worker nodes. You must apply these patches to ensure security compliance for your worker nodes. These worker node fix packs can be at a higher version than the master because some build fix packs are specific to worker nodes. Other change logs are for master fix packs, and apply only to the cluster master. Master fix packs might not be automatically applied. You can choose to apply them manually. For more information about patch types, see Update types.

Version 1.30 change log

Change log for master fix pack 1.30.4_1534, released 28 August 2024

The following table shows the changes that are in the master fix pack 1.30.4_1534. Master patch updates are applied automatically.

Changes since version 1.30.3_1531
Component Previous Current Description
Cluster health image v1.5.7 v1.5.8 New version contains updates and security fixes.
CoreDNS 1.11.1 1.11.3 See the CoreDNS release notes.
etcd v3.5.14 v3.5.15 See the etcd release notes.
IBM Cloud Block Storage driver and plug-in v2.5.12 v2.5.13 New version contains updates and security fixes.
IBM Cloud Controller Manager v1.30.3-1 v1.30.4-1 New version contains updates and security fixes.
IBM Cloud RBAC Operator 312030f 897f067 New version contains updates and security fixes.
Key Management Service provider v2.10.3 v2.10.4 New version contains updates and security fixes.
Kubernetes v1.30.3 v1.30.4 See the Kubernetes release notes.
Load balancer and load balancer monitor for IBM Cloud Provider 2967 3022 New version contains updates and security fixes.
Portieris admission controller v0.13.17 v0.13.18 See the Portieris admission controller release notes.
Tigera Operator v1.32.10-109-iks v1.32.10-124-iks See the Tigera Operator release notes.

Change log for worker node fix pack 1.30.4_1535, released 26 August 2024

The following table shows the changes that are in the worker node fix pack 1.30.4_1535. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.3_1533
Component Previous Current Description
Ubuntu 20.04 Packages 5.4.0-192-generic 5.4.0-193-generic Worker node kernel & package updates for CVE-2021-46926, CVE-2022-48174, CVE-2023-52629, CVE-2023-52760, CVE-2024-2201, CVE-2024-24860, CVE-2024-26830, CVE-2024-26921, CVE-2024-26929, CVE-2024-36901, CVE-2024-39484, CIS benchmark compliance: 1.1.10, 5.1.3.
Ubuntu 24.04 Packages 6.8.0-40-generic 6.8.0-41-generic Worker node kernel & package updates for CVE-2022-48174, CVE-2022-4968, CVE-2023-42363, CVE-2023-42364, CVE-2023-42365, CVE-2024-39292, CVE-2024-39484.
Containerd N/A N/A N/A
Kubernetes 1.30.3 1.30.4 For more information, see the change logs.
Haproxy c91c765 546887a Security fixes for CVE-2024-2398, CVE-2024-37370, CVE-2024-37371, CVE-2024-6345.
GPU Device Plug-in and Installer 184b5e23 c2e29569 Security fixes for CVE-2024-6345, CVE-2024-2398.

Change log for worker node fix pack 1.30.3_1533, released 12 August 2024

The following table shows the changes that are in the worker node fix pack 1.30.3_1533. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-190-generic 5.4.0-192-generic Worker node kernel & package updates for CVE-2022-48655, CVE-2022-48674, CVE-2023-52752, CVE-2024-0397, CVE-2024-2511, CVE-2024-26583, CVE-2024-26584, CVE-2024-26585, CVE-2024-26886, CVE-2024-26907, CVE-2024-27019, CVE-2024-36016, CVE-2024-37370, CVE-2024-37371, CVE-2024-4032, CVE-2024-4741, CVE-2024-5535, CVE-2024-7264.

| RHEL 8 Packages | 4.18.0-553.8.1.el8_10 | 4.18.0-553.16.1.el8_10 | Package updates for RHSA-2024:5101, CVE-2021-46939, CVE-2021-47018, CVE-2021-47257, CVE-2021-47284, CVE-2021-47304, CVE-2021-47373, CVE-2021-47408, CVE-2021-47461, CVE-2021-47468, CVE-2021-47491, CVE-2021-47548, CVE-2021-47579, CVE-2021-47624, CVE-2022-48632, CVE-2022-48743, CVE-2022-48747, CVE-2022-48757, CVE-2023-28746, CVE-2023-52451, CVE-2023-52463, CVE-2023-52469, CVE-2023-52471, CVE-2023-52486, CVE-2023-52530, CVE-2023-52619, CVE-2023-52622, CVE-2023-52623, CVE-2023-52648, CVE-2023-52653, CVE-2023-52658, CVE-2023-52662, CVE-2023-52679, CVE-2023-52707, CVE-2023-52730, CVE-2023-52756, CVE-2023-52762, CVE-2023-52764, CVE-2023-52775, CVE-2023-52777, CVE-2023-52784, CVE-2023-52791, CVE-2023-52796, CVE-2023-52803, CVE-2023-52811, CVE-2023-52832, CVE-2023-52834, CVE-2023-52845, CVE-2023-52847, CVE-2023-52864, CVE-2024-21823, CVE-2024-2201, CVE-2024-25739, CVE-2024-26586, CVE-2024-26614, CVE-2024-26640, CVE-2024-26660, CVE-2024-26669, CVE-2024-26686, CVE-2024-26698, CVE-2024-26704, CVE-2024-26733, CVE-2024-26740, CVE-2024-26772, CVE-2024-26773, CVE-2024-26802, CVE-2024-26810, CVE-2024-26837, CVE-2024-26840, CVE-2024-26843, CVE-2024-26852, CVE-2024-26853, CVE-2024-26870, CVE-2024-26878, CVE-2024-26908, CVE-2024-26921, CVE-2024-26925, CVE-2024-26940, CVE-2024-26958, CVE-2024-26960, CVE-2024-26961, CVE-2024-27010, CVE-2024-27011, CVE-2024-27019, CVE-2024-27020, CVE-2024-27025, CVE-2024-27065, CVE-2024-27388, CVE-2024-27395, CVE-2024-27434, CVE-2024-31076, CVE-2024-33621, CVE-2024-35790, CVE-2024-35801, CVE-2024-35807, CVE-2024-35810, CVE-2024-35814, CVE-2024-35823, CVE-2024-35824, CVE-2024-35847, CVE-2024-35876, CVE-2024-35893, CVE-2024-35896, CVE-2024-35897, CVE-2024-35899, CVE-2024-35900, CVE-2024-35910, CVE-2024-35912, CVE-2024-35924, CVE-2024-35925, CVE-2024-35930, CVE-2024-35937, CVE-2024-35938, CVE-2024-35946, CVE-2024-35947, CVE-2024-35952, CVE-2024-36000, CVE-2024-36005, CVE-2024-36006, CVE-2024-36010, CVE-2024-36016, CVE-2024-36017, CVE-2024-36020, CVE-2024-36025, CVE-2024-36270, CVE-2024-36286, CVE-2024-36489, CVE-2024-36886, CVE-2024-36889, CVE-2024-36896, CVE-2024-36904, CVE-2024-36905, CVE-2024-36917, CVE-2024-36921, CVE-2024-36927, CVE-2024-36929, CVE-2024-36933, CVE-2024-36940, CVE-2024-36941, CVE-2024-36945, CVE-2024-36950, CVE-2024-36954, CVE-2024-36960, CVE-2024-36971, CVE-2024-36978, CVE-2024-36979, CVE-2024-38538, CVE-2024-38555, CVE-2024-38573, CVE-2024-38575, CVE-2024-38596, CVE-2024-38598, CVE-2024-38615, CVE-2024-38627, CVE-2024-39276, CVE-2024-39472, CVE-2024-39476, CVE-2024-39487, CVE-2024-39502, CVE-2024-40927, CVE-2024-40974, RHSA-2024:3043, CVE-2024-0690. | | GPU device plug-in and installer | 47ed2ef |4bd77eb| Updates for CVE-2019-11236, CVE-2019-20916,CVE-2020-26137,CVE-2021-3572, CVE-2022-40897, CVE-2023-32681, CVE-2023-43804, CVE-2023-45803, CVE-2024-37891, CVE-2024-6345, CVE-2023-52803. |

Change log for master fix pack 1.30.3_1531, released 31 July 2024

The following table shows the changes that are in the master fix pack 1.30.3_1531. Master patch updates are applied automatically.

Changes since version 1.30.2_1525
Component Previous Current Description
Calico v3.27.2 v3.27.4 See the Calico release notes.
Cluster health image v1.5.6 v1.5.7 New version contains updates and security fixes.
etcd v3.5.13 v3.5.14 See the etcd release notes.
IBM Cloud Block Storage driver and plug-in v2.5.9 v2.5.12 New version contains updates and security fixes.
IBM Cloud Controller Manager v1.30.1-7 v1.30.3-1 New version contains updates and security fixes.
IBM Cloud File Storage for Classic for Classic plug-in and monitor 443 445 New version contains updates and security fixes.
IBM Cloud RBAC Operator 14d0ab5 312030f New version contains updates and security fixes.
Key Management Service provider v2.10.2 v2.10.3 New version contains updates and security fixes.
Kubernetes v1.30.2 v1.30.3 See the Kubernetes release notes.
Load balancer and load balancer monitor for IBM Cloud Provider 2933 2967 New version contains updates and security fixes.
Portieris admission controller v0.13.16 v0.13.17 See the Portieris admission controller release notes.
Tigera Operator v1.32.5-91-iks v1.32.10-109-iks See the Tigera Operator release notes.

Change log for worker node fix pack 1.30.3_1532, released 29 July 2024

The following table shows the changes that are in the worker node fix pack 1.30.3_1532. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.2_1528
Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-189-generic 5.4.0-190-generic Worker node kernel & package updates for CVE-2022-48655, CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-26583, CVE-2024-26584, CVE-2024-26585, CVE-2024-26907, CVE-2024-36016, CVE-2024-4076, CVE-2024-5569.
Ubuntu 24.04 packages 6.8.0-38-generic 6.8.0-39-generic Worker node kernel & package updates for CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-25742, CVE-2024-35984, CVE-2024-35990, CVE-2024-35992, CVE-2024-35997, CVE-2024-36008, CVE-2024-36016, CVE-2024-4076.
Containerd 1.7.19 1.7.20 For more information, see the change logs.
Kubernetes 1.30.2 1.30.3 For more information, see the change logs.
GPU device plug-in and installer 184b5e2 47ed2ef Security fixes for CVE-2024-4032.
Haproxy N/A N/A N/A

Change log for worker node fix pack 1.30.2_1528, released 15 July 2024

The following table shows the changes that are in the worker node fix pack 1.30.2_1528. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.2_1527
Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-187-generic 5.4.0-189-generic Worker node kernel & package updates for CVE-2023-6270, CVE-2023-6597, CVE-2024-0450, CVE-2024-2201, CVE-2024-23307, CVE-2024-24861, CVE-2024-26586, CVE-2024-26642, CVE-2024-26643, CVE-2024-26828, CVE-2024-26889, CVE-2024-26922, CVE-2024-26923, CVE-2024-26925, CVE-2024-26926.
Ubuntu 24.04 packages 6.8.0-36-generic 6.8.0-38-generic Worker node kernel & package updates for CVE-2024-26922, CVE-2024-26924, CVE-2024-26926, CVE-2024-39894.
Containerd 1.7.18 1.7.19 For more information, see the change logs.
HAProxy e77d4ca c91c765 Security fixes for CVE-2024-28182,CVE-2024-25062.
GPU device plug-in and installer fbdf629 184b5e23 Security fixes for CVE-2023-45288,CVE-2021-47069, CVE-2024-26801,CVE-2024-35854,CVE-2024-35960, CVE-2023-2953,CVE-2024-26584,CVE-2024-26759, CVE-2024-35890,CVE-2024-26982,CVE-2024-35835, CVE-2021-46972,CVE-2021-47353,CVE-2021-47356, CVE-2024-26675,CVE-2021-47236,CVE-2023-52781, CVE-2024-26656,CVE-2021-47311,CVE-2023-52675, CVE-2024-35789,CVE-2024-35958,CVE-2021-47456, CVE-2024-26583,CVE-2024-26974,CVE-2024-36004, CVE-2021-47073,CVE-2023-52464,CVE-2023-52667, CVE-2024-35838,CVE-2024-26906,CVE-2024-27410, CVE-2024-28182,CVE-2023-52560,CVE-2023-52615, CVE-2023-52686,CVE-2023-52700,CVE-2023-52669, CVE-2024-26804,CVE-2024-26859,CVE-2024-35853, CVE-2024-35852,CVE-2023-52813,CVE-2023-52881, CVE-2024-26735,CVE-2024-26826,CVE-2023-52703,CVE-2024-26907,CVE-2021-46909,CVE-2023-52877,CVE-2024-27397,CVE-2024-3651,CVE-2021-47495,CVE-2023-52626,CVE-2024-35959,CVE-2024-36007,CVE-2024-35845,CVE-2024-35855,CVE-2024-35888,CVE-2021-47310,CVE-2023-52835,CVE-2023-52878,CVE-2024-26585,CVE-2020-26555,CVE-2023-5090.

Change log for worker node fix pack 1.30.2_1527, released 09 July 2024

The following table shows the changes that are in the worker node fix pack 1.30.2_1527. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.2_1526
Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-186-generic 5.4.0-187-generic Worker node kernel & package updates for CVE-2022-4968, CVE-2024-2201, CVE-2024-26643, CVE-2024-26925, CVE-2024-32002, CVE-2024-38428.
Ubuntu 24.04 packages 6.8.0-35-generic 6.8.0-36-generic Worker node kernel & package updates for CVE-2022-4968, CVE-2024-26924, CVE-2024-38428, CVE-2024-6387.
HAProxy 18889dd e77d4ca New version contains security fixes
GPU device plug-in and installer 8ef78ef fbdf629 New version contains updates and security fixes.

Change log for master fix pack 1.30.2_1525, released 19 June 2024

The following table shows the changes that are in the master fix pack 1.30.2_1525. Master patch updates are applied automatically.

Changes since version 1.30.1_1520
Component Previous Current Description
Cluster health image v1.4.10 v1.5.6 New version contains updates and security fixes.
IBM Cloud Controller Manager v1.30.1-2 v1.30.1-7 New version contains updates and security fixes.
IBM Cloud Metrics Server Config Watcher v1.1.3 v1.1.4 New version contains updates and security fixes.
IBM Cloud RBAC Operator 4c5d156 14d0ab5 New version contains updates and security fixes.
Key Management Service provider v2.10.1 v2.10.2 New version contains updates and security fixes.
Kubernetes v1.30.1 v1.30.2 See the Kubernetes release notes.
Kubernetes feature gates configuration CustomCPUCFSQuotaPeriod=true,UnauthenticatedHTTP2DOSMitigation=true CustomCPUCFSQuotaPeriod=true,UnauthenticatedHTTP2DOSMitigation=true,StrictCostEnforcementForVAP=true,StrictCostEnforcementForWebhooks=true https://github.com/kubernetes/kubernetes/issues/124542
Kubernetes NodeLocal DNS cache 1.23.0 1.23.1 See the Kubernetes NodeLocal DNS cache release notes.
Portieris admission controller v0.13.15 v0.13.16 See the Portieris admission controller release notes.

Change log for worker node fix pack 1.30.2_1526, released 18 June 2024

The following table shows the changes that are in the worker node fix pack 1.30.2_1526. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.1_1521
Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-182-generic 5.4.0-186-generic Worker node kernel and package updates CVE-2021-47063, CVE-2021-47070, CVE-2023-47233, CVE-2023-52530, CVE-2024-26614, CVE-2024-26622, CVE-2024-26712, CVE-2024-26733, CIS benchmark compliance: 1.5.4, 1.5.5, 4.5.5, 3.3.4, 3.3.9, 1.1.1.2, 1.1.1.3, 1.1.1.4, 1.1.1.5.
Ubuntu 24.04 packages N/A 6.8.0-35-generic N/A
Kubernetes 1.30.1 1.30.2 For more information, see the change logs.
Containerd 1.7.17 1.7.18 For more information, see the change logs.
HAProxy 0062a3c 18889dd Security fixes for CVE-2024-25062.
GPU device plug-in and installer fdf201e 8ef78ef Security fixes for CVE-2019-25162, CVE-2020-36777, CVE-2021-46934, CVE-2021-47013, CVE-2021-47055, CVE-2021-47118, CVE-2021-47153, CVE-2021-47171, CVE-2021-47185, CVE-2022-48627, CVE-2022-48669, CVE-2023-52439, CVE-2023-52445, CVE-2023-52477, CVE-2023-52513, CVE-2023-52520, CVE-2023-52528, CVE-2023-52565, CVE-2023-52578, CVE-2023-52594, CVE-2023-52595, CVE-2023-52598, CVE-2023-52606, CVE-2023-52607, CVE-2023-52610, CVE-2023-6240, CVE-2024-0340, CVE-2024-23307, CVE-2024-25744, CVE-2024-26593, CVE-2024-26603, CVE-2024-26610, CVE-2024-26615, CVE-2024-26642, CVE-2024-26643, CVE-2024-26659, CVE-2024-26664, CVE-2024-26693, CVE-2024-26694, CVE-2024-26743, CVE-2024-26744, CVE-2024-26779, CVE-2024-26872, CVE-2024-26892, CVE-2024-26897, CVE-2024-26901, CVE-2024-26919, CVE-2024-26933, CVE-2024-26934, CVE-2024-26964, CVE-2024-26973, CVE-2024-26993, CVE-2024-27014, CVE-2024-27048, CVE-2024-27052, CVE-2024-27056, CVE-2024-27059, CVE-2024-25062.

Change log for worker node fix pack 1.30.1_1521, released 03 June 2024

The following table shows the changes that are in the worker node fix pack 1.30.1_1521. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.30.0_1518
Component Previous Current Description
Ubuntu 20.04 packages 5.4.0-182-generic 5.4.0-182-generic Worker node package updates CVE-2023-22745, CVE-2024-32004, CVE-2024-32020, CVE-2024-32021, CVE-2024-32465, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602, CVE-2024-34064, CVE-2024-3651.
Kubernetes 1.30.0 1.30.1 For more information, see the change logs.
Containerd 1.7.17 1.7.17 N/A
HAProxy e88695e 0062a3c Security fixes for CVE-2024-0450, CVE-2024-33599, CVE-2024-26461, CVE-2021-43618, CVE-2024-22365, CVE-2023-6597, CVE-2024-26458, CVE-2024-2961, CVE-2024-33601, CVE-2024-33602, CVE-2023-7008, CVE-2023-6004, CVE-2023-6918, CVE-2024-33600.
GPU device plug-in and installer 806184d fdf201e Security fixes for CVE-2024-33602, CVE-2024-28182, CVE-2024-2961, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601.

Change log for master fix pack 1.30.1_1520 and worker node fix pack 1.30.0_1518, released 29 May 2024

Changes since version 1.29
Component Previous Current Description
IBM Cloud Controller Manager v1.29.5-1 v1.30.1-2 New version contains updates and security fixes.
Key Management Service provider v2.9.6 v2.10.1 New version contains updates and security fixes. In addition, only KMS v2 is supported. KMS v1 instances were migrated to KMS v2 as part of the IBM Cloud Kubernetes Service version 1.29 release.
Konnectivity agent and server v0.29.2_105_iks v0.30.2 See the Konnectivity release notes.
Kubernetes v1.29.5 v1.30.1 See the Kubernetes release notes.
Kubernetes add-on resizer 1.8.19 1.8.20 See the Kubernetes add-on resizer release notes.
Kubernetes configurations N/A N/A See Default service settings for Kubernetes components.
Kubernetes Metrics Server v0.6.4 v0.7.1 See the Kubernetes Metrics Server release notes.
Kubernetes snapshot controller v6.3.0 v6.3.3 See the Kubernetes snapshot controller release notes.