Kubernetes version 1.31 change log

View information about version changes for major, minor, and patch updates that are available for your IBM Cloud® Kubernetes Service clusters that run version 1.31. Changes include updates to Kubernetes and IBM Cloud Provider components.

Overview

In Kubernetes, most new beta features are disabled by default. Alpha features, which are subject to change, are disabled in all versions. For more information, see the Default service settings for Kubernetes components and the feature gates for each version.

For more information about major, minor, and patch versions and preparation actions between minor versions, see Kubernetes versions.

Check the Security Bulletins on IBM Cloud Status for security vulnerabilities that affect IBM Cloud Kubernetes Service. You can filter the results to view only Kubernetes Cluster security bulletins that are relevant to IBM Cloud Kubernetes Service. Change log entries that address other security vulnerabilities but don't also refer to an IBM security bulletin are for vulnerabilities that are not known to affect IBM Cloud Kubernetes Service in normal usage. If you run privileged containers, run commands on the workers, or execute untrusted code, then you might be at risk.

Some change logs are for worker node fix packs, and apply only to worker nodes. You must apply these patches to ensure security compliance for your worker nodes. These worker node fix packs can be at a higher version than the master because some build fix packs are specific to worker nodes. Other change logs are for master fix packs, and apply only to the cluster master. Master fix packs might not be automatically applied. You can choose to apply them manually. For more information about patch types, see Update types.

Version 1.31 change log

Change log for worker node fix pack 1.31.2_1529, released 18 November 2024

The following table shows the changes that are in the worker node fix pack 1.31.2_1529. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.31.1_1527
Component	Previous	Current	Description
Ubuntu 20.04 Packages	5.4.0-200-generic	5.4.0-200-generic	N/A
Ubuntu 24.04 Packages	6.8.0-48-generic	6.8.0-48-generic	N/A
Containerd	1.7.23	1.7.23	N/A
Kubernetes	1.31.1	1.31.2	For more information, see the change logs.
HAProxy	885986	55c148	Security fixes for CVE-2023-45539, CVE-2024-3596, CVE-2019-12900, CVE-2024-50602.
GPU Device Plug-in and Installer	33c70dd	96f9b63	Security fixes for CVE-2022-48773, CVE-2022-48936, CVE-2023-52492, CVE-2024-24857, CVE-2024-26851, CVE-2024-26924, CVE-2024-26976, CVE-2024-27017, CVE-2024-27062, CVE-2024-35839, CVE-2024-35898, CVE-2024-35939, CVE-2024-38540, CVE-2024-38541, CVE-2024-38586, CVE-2024-38608, CVE-2024-39503, CVE-2024-40924, CVE-2024-40961, CVE-2024-40983, CVE-2024-40984, CVE-2024-41009, CVE-2024-41042, CVE-2024-41066, CVE-2024-41092, CVE-2024-41093, CVE-2024-42070, CVE-2024-42079, CVE-2024-42244, CVE-2024-42284, CVE-2024-42292, CVE-2024-42301, CVE-2024-43854, CVE-2024-43880, CVE-2024-43889, CVE-2024-43892, CVE-2024-44935, CVE-2024-44989, CVE-2024-44990, CVE-2024-45018, CVE-2024-46826, CVE-2024-47668, CVE-2024-3596, CVE-2019-12900, CVE-2024-50602.

Change log for master fix pack 1.31.2_1528, released 13 November 2024

The following table shows the changes that are in the master fix pack 1.31.2_1528. Master patch updates are applied automatically.

Changes since version 1.31.1_1526
Component	Previous	Current	Description
IBM Cloud Block Storage driver and plug-in	v2.5.15	v2.5.16	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.31.1-6	v1.31.2-2	New version contains updates and security fixes.
IBM Cloud RBAC Operator	77dac6b	c4a05b0	New version contains updates and security fixes.
Kubernetes	v1.31.1	v1.31.2	See the Kubernetes release notes.

Change log for worker node fix pack 1.31.1_1527, released 04 November 2024

The following table shows the changes that are in the worker node fix pack 1.31.1_1527. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.31.1_1524
Component	Previous	Current	Description
Ubuntu 20.04 Packages	5.4.0-198-generic	5.4.0-200-generic	Kernel and package updates for CVE-2021-47212, CVE-2022-36402, CVE-2023-52531, CVE-2023-52614, CVE-2024-20696, CVE-2024-26607, CVE-2024-26640, CVE-2024-26641, CVE-2024-26668, CVE-2024-26669, CVE-2024-26800, CVE-2024-26885, CVE-2024-26891, CVE-2024-26960, CVE-2024-27051, CVE-2024-27397, CVE-2024-35848, CVE-2024-37891, CVE-2024-38602, CVE-2024-38611, CVE-2024-38630, CVE-2024-40929, CVE-2024-41071, CVE-2024-41073, CVE-2024-42229, CVE-2024-42244, CVE-2024-45016
Ubuntu 24.04 Packages	6.8.0-47-generic	6.8.0-48-generic	Kernel and package updates for CVE-2024-20696, CVE-2024-27022, CVE-2024-37891, CVE-2024-41022, CVE-2024-41311, CVE-2024-42271, CVE-2024-42280, CVE-2024-43858, CVE-2024-45016
GPU Device Plug-in and Installer	68e8137	33c70dd	Driver update and security fixes for CVE-2024-5535, CVE-2024-6232

Change log for master fix pack 1.31.1_1526, released 30 October 2024

The following table shows the changes that are in the master fix pack 1.31.1_1526. Master patch updates are applied automatically.

Changes since version 1.31.1_1521
Component	Previous	Current	Description
Calico	v3.28.1	v3.28.2	See the Calico release notes.
Cluster health image	v1.6.2	v1.6.3	New version contains updates and security fixes.
etcd	v3.5.15	v3.5.16	See the etcd release notes.
IBM Cloud Controller Manager	v1.31.1-1	v1.31.1-6	New version contains updates and security fixes.
IBM Cloud File Storage for Classic for Classic plug-in and monitor	446	447	New version contains updates and security fixes.
IBM Cloud RBAC Operator	5b17dab	77dac6b	New version contains updates and security fixes.
Key Management Service provider	v2.10.5	v2.10.7	New version contains updates and security fixes.
Portieris admission controller	v0.13.18	v0.13.20	See the Portieris admission controller release notes.
Tigera Operator	v1.34.3	v1.34.5	See the Tigera Operator release notes.

Change log for worker node fix pack 1.31.1_1524, released 21 October 2024

The following table shows the changes that are in the worker node fix pack 1.31.1_1524. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.31.1_1523
Component	Previous	Current	Description
Ubuntu 20.04 Packages	5.4.0-196-generic	5.4.0-198-generic	Kernel and package updates for CVE-2022-36227, CVE-2024-26960, CVE-2024-27397, CVE-2024-38630, CVE-2024-45016, CVE-2024-5742.
Haproxy	67d03375	88598691	Security fixes for CVE-2024-5535.

Change log for worker node fix pack 1.31.1_1523, released 09 October 2024

The following table shows the changes that are in the worker node fix pack 1.31.1_1523. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.31.1_1522
Component	Previous	Current	Description
Ubuntu 20.04 Packages	N/A	N/A	Package updates for CVE-2023-26112, CVE-2024-43802.
Ubuntu 24.04 Packages	N/A	N/A	Package updates for CVE-2024-43802.
Haproxy	546887ab	67d03375	Security fixes for CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492.
GPU Device Plug-in and Installer	a248cf6b	68e8137	Driver update and security fixes for CVE-2024-26880, CVE-2024-26894, CVE-2024-39506, CVE-2024-41040, CVE-2023-52800, CVE-2024-40989, CVE-2024-42090, CVE-2021-47385, CVE-2023-52470, CVE-2023-52683, CVE-2024-42238, CVE-2024-42265, CVE-2021-47384, CVE-2024-36922, CVE-2024-42114, CVE-2024-42228, CVE-2024-40912, CVE-2024-40931, CVE-2024-42124, CVE-2021-47289, CVE-2023-52840, CVE-2024-26595, CVE-2024-36901, CVE-2024-6923, CVE-2024-38558, CVE-2024-41008, CVE-2024-41012, CVE-2024-4032, CVE-2024-41007, CVE-2024-41035, CVE-2021-47527, CVE-2022-48754, CVE-2023-6040, CVE-2024-40978, CVE-2021-47582, CVE-2024-38581, CVE-2024-41090, CVE-2024-45492, CVE-2021-47321, CVE-2024-36920, CVE-2024-40954, CVE-2024-40995, CVE-2024-40998, CVE-2024-42152, CVE-2021-46984, CVE-2023-52817, CVE-2024-35809, CVE-2024-35944, CVE-2024-23848, CVE-2024-42226, CVE-2024-42094, CVE-2021-47101, CVE-2024-26720, CVE-2024-26923, CVE-2024-41005, CVE-2023-52798, CVE-2024-42096, CVE-2024-40988, CVE-2024-42084, CVE-2024-42240, CVE-2024-41014, CVE-2024-41041, CVE-2024-41065, CVE-2024-42322, CVE-2022-48760, CVE-2024-26600, CVE-2024-26939, CVE-2024-40972, CVE-2024-40997, CVE-2024-43830, CVE-2024-38559, CVE-2024-38619, CVE-2024-39501, CVE-2024-42131, CVE-2021-47393, CVE-2022-48836, CVE-2023-52809, CVE-2024-26638, CVE-2021-47609, CVE-2024-26855, CVE-2024-36902, CVE-2021-47287, CVE-2024-40960, CVE-2024-41064, CVE-2024-41071, CVE-2024-42225, CVE-2024-45490, CVE-2021-47352, CVE-2024-26769, CVE-2024-36939, CVE-2024-40977, CVE-2024-42154, CVE-2024-35989, CVE-2024-36919, CVE-2024-38579, CVE-2024-41076, CVE-2024-26645, CVE-2024-40958, CVE-2024-41023, CVE-2024-43871, CVE-2021-47441, CVE-2022-48804, CVE-2023-52478, CVE-2023-52605, CVE-2024-26665, CVE-2024-40904, CVE-2024-40911, CVE-2024-41044, CVE-2024-41039, CVE-2024-41060, CVE-2024-42246, CVE-2024-45491, CVE-2021-47338, CVE-2021-47432, CVE-2021-47560, CVE-2024-27042, CVE-2021-47383, CVE-2024-36953, CVE-2024-40959, CVE-2021-47097, CVE-2024-26717, CVE-2024-37356, CVE-2024-41038, CVE-2024-39471, CVE-2021-47497, CVE-2022-48619, CVE-2022-48866, CVE-2023-52476, CVE-2021-47466, CVE-2023-52522, CVE-2024-41097, CVE-2024-42237, CVE-2021-47412, CVE-2024-26649, CVE-2024-41056, CVE-2024-41013, CVE-2024-41055, CVE-2024-26846, CVE-2024-35884, CVE-2024-36883, CVE-2024-40929, CVE-2024-40901, CVE-2024-40941, CVE-2024-41091, CVE-2021-47386, CVE-2024-27013, CVE-2024-35877, CVE-2024-39499, CVE-2021-47455, CVE-2024-38570, CVE-2024-6232.

Change log for master fix pack 1.31.1_1521, released 25 September 2024

The following table shows the changes that are in the master fix pack 1.31.1_1521. Master patch updates are applied automatically.

Changes since version 1.31.0_1520
Component	Previous	Current	Description
IBM Cloud Block Storage driver and plug-in	v2.5.14	v2.5.15	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.31.0-3	v1.31.1-1	New version contains updates and security fixes.
Key Management Service provider	v2.10.4	v2.10.5	New version contains updates and security fixes.
Kubernetes	v1.31.0	v1.31.1	See the Kubernetes release notes.

Change log for worker node fix pack 1.31.1_1522, released 23 September 2024

The following table shows the changes that are in the worker node fix pack 1.31.1_1522. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 1.31.0_1517
Component	Previous	Current	Description
Ubuntu 20.04 Packages	5.4.0-193-generic	5.4.0-196-generic	Worker node kernel & package updates for CVE-2016-1585, CVE-2021-46926, CVE-2021-47188, CVE-2022-48791, CVE-2022-48863, CVE-2023-27043, CVE-2023-52629, CVE-2023-52760, CVE-2024-2201, CVE-2024-24860, CVE-2024-26677, CVE-2024-26787, CVE-2024-26830, CVE-2024-26921, CVE-2024-26929, CVE-2024-27012, CVE-2024-36901, CVE-2024-38570, CVE-2024-39484, CVE-2024-39494, CVE-2024-42160, CVE-2024-42228, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-6232, CVE-2024-6345, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-8096
Ubuntu 24.04 packages	6.8.0-41-generic	6.8.0-45-generic	Worker node package updates for CVE-2023-27043, CVE-2024-39292, CVE-2024-39484, CVE-2024-41009, CVE-2024-42154, CVE-2024-42159, CVE-2024-42160, CVE-2024-42224, CVE-2024-42228, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-6232, CVE-2024-6345, CVE-2024-6923, CVE-2024-7006, CVE-2024-7592, CVE-2024-8088, CVE-2024-8096.
Containerd	1.7.21	1.7.22	For more information, see the change logs and security bulletin for CVE-2024-45310.
Kubernetes	1.31.0	1.31.1	For more information, see the change logs.
Haproxy	N/A	N/A	N/A
GPU Device Plug-in and Installer	91f881a3	a248cf6b	Security fixes for CVE-2024-6119, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-34397.

Change log for master fix pack 1.31.0_1520 and worker node fix pack 1.31.0_1518, released 18 September 2024

Changes since version 1.30.
Component	Previous	Current	Description
Calico	v3.27.4	v3.28.1	See the Calico release notes.
Cluster health image	v1.5.8	v1.6.2	New version contains updates and security fixes.
IBM Cloud Block Storage driver and plug-in	v2.5.13	v2.5.14	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.30.4-1	v1.31.0-3	New version contains updates and security fixes.
IBM Cloud File Storage for Classic plug-in and monitor	445	446	New version contains updates and security fixes.
IBM Cloud Metrics Server Config Watcher	v1.1.4	v1.1.5	New version contains updates and security fixes.
IBM Cloud RBAC Operator	897f067	5b17dab	New version contains updates and security fixes.
Konnectivity agent and server	v0.30.2	v0.30.3	See the Konnectivity release notes.
Kubernetes	v1.30.4	v1.31.0	See the Kubernetes release notes.
Kubernetes add-on resizer	1.8.20	1.8.22	See the Kubernetes add-on resizer release notes.
Kubernetes configuration	N/A	N/A	See Default service settings for Kubernetes components.
Kubernetes Metrics Server	v0.7.1	v0.7.2	See the Kubernetes Metrics Server release notes.
Kubernetes snapshot controller	v6.3.3	v8.0.1	See the Kubernetes snapshot controller release notes.
Load balancer and load balancer monitor for IBM Cloud Provider	3022	3051	New version contains updates and security fixes.
Pause container image	3.9	3.10	See the pause container image release notes.
Tigera Operator	v1.32.10-124-iks	v1.34.3	See the Tigera Operator release notes.