GCP-2023-041

Google Cloud Platform Security Advisory

Published: 2023-11-08
Reference: CVE-2023-4004

GKE

DescriptionSeverity

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

  • CVE-2023-4004

Autopilot clusters are impacted.

Clusters using GKE Sandbox are not impacted.

What should I do?

Upgrade your Container-Optimized OS node pools to one of the following versions or later:

  • 1.27.4-gke.2300
  • 1.28.1-gke.1257000

Upgrade your Ubuntu node pools to one of the following versions or later:

  • 1.24.14-gke.1027001
  • 1.25.13-gke.700
  • 1.26.8-gke.700
  • 1.27.5-gke.700
  • 1.28.1-gke.1050000
High

Anthos clusters on VMware

DescriptionSeverity

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

  • CVE-2023-4004

What should I do?

Pending

Anthos clusters on AWS

DescriptionSeverity

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

  • CVE-2023-4004

What should I do?

Pending

Anthos on Azure

DescriptionSeverity

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

  • CVE-2023-4004

What should I do?

Pending

Anthos clusters on bare metal

DescriptionSeverity

The following vulnerabilities were discovered in the Linux kernel that can lead to a privilege escalation on Container-Optimized OS and Ubuntu nodes.

  • CVE-2023-4004

What should I do?

There is no action required. Anthos clusters on bare metal are not affected as it does not bundle an operating system in its distribution.

None

CLICK FOR MORE INFORMATION