You can see the latest product updates for all of Google Cloud on the Google Cloud page, browse and filter all release notes in the Google Cloud console, or programmatically access release notes in BigQuery.
To get the latest product updates delivered to you, add the URL of this page to your feed reader, or add the feed URL directly.
November 17, 2025
cos-117-18613-439-28
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
Updated app-containers/runc to v1.2.8.
Added support for the Lustre 2.14.0_p224 drivers.
Backported an upstream commit to fix high CPU usage when trying to find suitable blocks in ext4 fs.
Runtime sysctl changes:
- Changed: fs.file-max: 811751 -> 811818
November 11, 2025
cos-117-18613-439-22
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-40083 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811733 -> 811751
Fixed a race condition where unmounting file systems monitored by inotify or fanotify could result in kernel crash.
Fixed CVE-2025-40042 in the Linux kernel.
November 07, 2025
cos-117-18613-439-16
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811728 -> 811733
Fixed CVE-2025-40105 in the Linux kernel.
Fixed CVE-2025-40052 in the Linux kernel.
Fixed CVE-2025-40049 in the Linux kernel.
Fixed CVE-2025-40099 in the Linux kernel.
Fixed CVE-2025-40103 in the Linux kernel.
Fixed bcache latency spikes.
Fixed CVE-2025-40035 in the Linux kernel.
Fixed CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881 in app-containers/runc.
Fixed CVE-2025-40040 in the Linux kernel.
Fixed CVE-2025-40044 in the Linux kernel.
November 03, 2025
cos-117-18613-439-12
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-38073 in the Linux kernel.
Fixed CVE-2025-40078 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811785 -> 811728
Fixed CVE-2025-40038 in the Linux kernel.
Fixed CVE-2025-40070 in the Linux kernel.
October 27, 2025
cos-117-18613-439-9
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-11413 and CVE-2025-11414 in binutils-libs.
Upgraded sys-apps/less to v685.
Fixed CVE-2025-11495 in binutils-libs.
Added support for NVIDIA driver v535.274.02 and v570.195.03.
Fixed CVE-2025-11494 in binutils-libs.
Fixed CVE-2025-11412 in binutils-libs.
Upgraded sys-apps/hwdata to v0.400.
Updated app-containers/runc to v1.2.7.
October 20, 2025
cos-117-18613-439-2
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.111 | v24.0.9 | v1.7.28 | See List |
This is an LTS Refresh release.
Upgraded net-nds/rpcbind to v1.2.8.
Upgraded dev-lang/go to v1.23.12.
Added task information collection to sosreports.
Upgraded sys-apps/gentoo-functions to v1.7.4.
Fixed CVE-2025-41244 in app-emulation/open-vm-tools.
Upgraded app-admin/sudo to v1.9.17_p2.
Updated golang.org/x/crypto, golang.org/x/net, and golang.org/x/oauth2 in kubelet and kubectl.
Fixed KCTF-cd8ae32 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811830 -> 811764
Reduced gcr_wait_online retry gap.
Fixed CVE-2025-39961 in the Linux kernel.
Upgraded app-admin/google-guest-configs to v20250805.00.
Fixed KCTF-6bb73db in the Linux Kernel.
Upgraded dev-libs/expat to v2.7.3.
Upgraded dev-db/sqlite to v3.50.3.
October 13, 2025
cos-117-18613-339-97
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.105 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-11081, CVE-2025-11082 and CVE-2025-11083 in sys-libs/binutils-libs.
Runtime sysctl changes:
- Changed: fs.file-max: 811755 -> 811830
Upgraded app-admin/node-problem-detector to v0.8.22.
Fixed CVE-2025-39947 in the Linux kernel.
Added support for NVIDIA driver v580.95.05. Updated all latest driver version and default driver versions for NVIDIA_GB200 and NVIDIA_B200 to v580.95.05.
Fixed CVE-2025-23143 in the Linux kernel.
October 09, 2025
cos-117-18613-339-89
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.105 | v24.0.9 | v1.7.28 | See List |
Updated toolbox container image tag to v20251002.
Runtime sysctl changes:
- Changed: fs.file-max: 811788 -> 811755
Fixed CVE-2025-39953 in the Linux kernel.
Partially fixed the system not responding caused by excessive contention among writeback kworkers when switching a large number of inodes between cgroups.
Fixed CVE-2025-39931 in the Linux kernel.
Upgraded sys-apps/hwdata to v0.399.
Fixed KCTF-134121b in the Linux kernel.
October 06, 2025
cos-117-18613-339-84
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.105 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-50181 in dev-python/urllib3.
Runtime sysctl changes:
- Changed: fs.file-max: 811817 -> 811788
Fixed CVE-2025-39882 in the Linux kernel.
Fixed CVE-2025-39911 in the Linux kernel.
Fixed CVE-2025-39886 in the Linux kernel.
Fixed CVE-2025-39914 in the Linux kernel.
Fixed CVE-2025-22106 in the Linux kernel.
Fixed CVE-2025-39913 in the Linux kernel.
Add support for NVIDIA MFT Tools v4.33.0.
Fixed KCTF-1b34cbb in the Linux kernel.
September 29, 2025
cos-117-18613-339-77
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.105 | v24.0.9 | v1.7.28 | See List |
Updated golang.org/x/crypto, golang.org/x/net, golang.org/x/oauth2, and github.com/golang-jwt/jwt/v4 in Docker.
Updated dev-python/jinja to v3.1.6. This resolves CVE-2024-56326, CVE-2024-56201 and CVE-2025-27516.
Fixed KCTF-0aeb54a in the Linux Kernel.
Fixed CVE-2025-39881 in the Linux kernel.
Fixed CVE-2025-39883 in the Linux kernel.
Fixed CVE-2025-40300 in the Linux kernel.
September 24, 2025
cos-117-18613-339-70
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.105 | v24.0.9 | v1.7.28 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811774 -> 811794
Upgraded dev-libs/libxml2 to version 2.13.9. This fixes CVE-2025-9714.
Updated the Linux kernel to v6.6.105.
Upgraded dev-libs/libxslt to version 1.1.43-r1.
Updated cos-gpu-installer to v2.5.7.
Updated golang.org/x/crypto in google-osconfig-agent to v0.31.0.
Enabled Coherent Driver Memory Management by default when installing GPU drivers on GB2000.
Added support for NVIDIA driver v580.82.07. Updated all latest driver version and default driver versions for NVIDIA_GB200 and NVIDIA_B200 to v580.82.07.
September 16, 2025
cos-117-18613-339-65
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-38571 in the Linux kernel.
Fixed CVE-2025-38528 in the Linux kernel.
Fixed CVE-2025-38639 in the Linux kernel.
Fixed CVE-2025-38588 in the Linux kernel.
Fixed CVE-2025-38566 in the Linux kernel.
Fixed CVE-2025-38645 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811749 -> 811774
Fixed CVE-2025-38565 in the Linux kernel.
Fixed CVE-2025-38587 in the Linux kernel.
Fixed CVE-2025-38608 in the Linux kernel.
Fixed CVE-2025-38572 in the Linux kernel.
Added support for NVIDIA MFT Tools on arm64.
Fixed CVE-2025-38568 in the Linux kernel.
Fixed CVE-2025-38527 in the Linux kernel.
Fixed CVE-2025-38622 in the Linux kernel.
Added GDRCopy kernel module for NVIDIA drivers.
Fixed CVE-2025-38539 in the Linux kernel.
Fixed CVE-2025-38640 in the Linux kernel.
September 08, 2025
cos-117-18613-339-56
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-38351 in the Linux kernel.
Fixed CVE-2025-38322 in the Linux kernel.
Fixed CVE-2025-38676 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811812 -> 811749
September 02, 2025
cos-117-18613-339-52
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Fixed KCTF-62708b9 in the Linux kernel.
Fixed KCTF-aba0c94 in the Linux kernel.
Fixed CVE-2025-6052 in dev-libs/glib.
Upgraded sys-apps/hwdata to v0.398.
Fixed KCTF-6db015f in the Linux kernel.
Upgraded sys-apps/file to v5.46-r3.
Runtime sysctl changes:
- Changed: fs.file-max: 811728 -> 811812
August 25, 2025
cos-117-18613-339-44
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811771 -> 811728
Fixed KCTF-abad3d0 in the Linux kernel.
Added IPv6 support for machines using the IDPF driver.
Disabled DNSSEC by default for COS TPU VMs.
Added support for the Lustre 2.14.0_p216 drivers.
August 18, 2025
cos-117-18613-339-39
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Upgraded sys-libs/binutils-libs to version 2.45. This fixes CVE-2025-8224,CVE-2025-8225 and CVE-2025-1153.
Fixed KCTF-01d3c84 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811830 -> 811771
August 14, 2025
cos-117-18613-339-36
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Fixed CVE-2025-38499 in the linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811765 -> 811830
August 12, 2025
cos-117-18613-339-32
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.28 | See List |
Added NVIDIA GPU driver's R580 branch. Updated the LATEST GPU driver label to version 580.65.06.
Upgraded virtual/logger to v0-r2.
Upgraded dev-vcs/git to version 2.49.1. This fixes CVE-2025-48385, CVE-2025-27613, CVE-2025-27614, CVE-2025-48384, CVE-2025-46835.
Fixed CVE-2024-6174 in cloud-init.
Fixed CVE-2024-11584 in cloud-init.
Upgraded dev-libs/glib to 2.82.5. This resolves CVE-2024-52533.
Fixed an issue where the cpuidle driver selected for some machine types would cause inflated reports of high CPU usage.
Updated containerd to v1.7.28.
Added support for Nvidia driver version 570.172.08. This fixes CVE-2025-23279.
Updated app-admin/node-problem-detector to 0.8.21.
Upgraded net-misc/netplan to 1.1.2. This fixes CVE-2022-4968.
Runtime sysctl changes:
- Changed: fs.file-max: 811775 -> 811765
Updated dev-python/requests to v2.32.4.
Patched openssl to fix CVE-2023-50782 affecting dev-python/crytography.
Added support for Nvidia driver version 535.261.03. This fixes CVE-2025-23286 and CVE-2025-23279.
Fixed CVE-2025-8058 in glibc.
Fixed KCTF-bfebdb8 in the kernel.
Upgraded urllib3 to version 1.26.18. This fixes CVE-2021-33503, CVE-2023-43804, and CVE-2023-45803.
August 06, 2025
cos-117-18613-339-26
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.27 | See List |
Fixed an issue where the cpuidle driver selected for some machine types would cause inflated reports of high CPU usage.
Runtime sysctl changes:
- Changed: fs.file-max: 811775 -> 811788
Fixed CVE-2024-6174 in cloud-init.
Upgraded virtual/logger to v0-r2.
Updated dev-python/requests to v2.32.4.
Fixed CVE-2024-11584 in cloud-init.
Upgraded net-misc/netplan to 1.1.2. This fixes CVE-2022-4968.
Added support for Nvidia driver version 570.172.08. This fixes CVE-2025-23279.
Upgraded dev-libs/glib to 2.82.5. This resolves CVE-2024-52533.
Upgraded dev-vcs/git to version 2.49.1. This fixes CVE-2025-48385, CVE-2025-27613, CVE-2025-27614, CVE-2025-48384, CVE-2025-46835.
Patched openssl to fix CVE-2023-50782 affecting dev-python/cryptography.
Added support for Nvidia driver version 535.261.03. This fixes CVE-2025-23286 and CVE-2025-23279.
July 28, 2025
cos-117-18613-339-11
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.97 | v24.0.9 | v1.7.27 | See List |
This is an LTS Refresh release.
Runtime sysctl changes:
- Changed: fs.file-max: 811820 -> 811775
Upgraded sys-process/procps to v4.0.5-r2.
Upgraded sys-process/lsof to v4.99.5.
Upgraded sys-libs/talloc to v2.4.3.
Upgraded dev-db/sqlite to v3.50.1.
Fixed KCTF-5e28d5a in the Linux kernel.
Upgraded app-admin/google-guest-configs to v20250516.00.
Upgraded dev-lang/go to v1.23.9.
Upgraded app-containers/cni-plugins to v1.7.1.
Fixed CVE-2024-26130 in dev-python/cryptography.
Upgraded sqlite to v3.50.2. This resolves CVE-2025-6965.
Upgraded net-fs/cifs-utils to v7.4.
Updated app-misc/jq to v1.8.1.
The NFS access cache is no longer cleared on login by default. To use the old behavior, load the NFS module with the nfs_fasc=1 module parameter.
Fixed a kernel bug which caused some NVME disk IO errors to be ignored, potentially resulting in dropped writes.
Upgraded sys-libs/libcap to v2.76.
Upgraded app-arch/gzip to v1.14.
July 21, 2025
cos-117-18613-263-75
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811784 -> 811820
Added ARM support for the Lustre 2.14.0 drivers.
Fixed an issue where some workloads could cause a full system hang when running close to their memory limit.
Updated the NVIDIA GPU driver policy for New Feature Branch (NFB) drivers. The LATEST tag has been updated to point to the stable 570.133.20 Production Branch. The 575.57.08 NFB driver remains available for development and testing but must now be selected by its specific version number. Removed 575.57.08 NFB driver support for NVIDIA_GB200 machine.
Fixed KCTF-103406b in the Linux kernel.
July 14, 2025
cos-117-18613-263-66
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Updated google-guest-agent to v20250701.01.
Upgraded vim, vim-core to version 9.1.1500. This fixes CVE-2025-26603, CVE-2025-27423, CVE-2025-29768, CVE-2025-1215, CVE-2025-24014, CVE-2025-22134.
Updated app-editors/nano to v8.5. This resolves CVE-2024-5742.
Runtime sysctl changes:
- Changed: fs.file-max: 811799 -> 811784
Upgraded nvidia-container-toolkit to v1.17.8. This fixes CVE-2025-23266.
July 07, 2025
cos-117-18613-263-58
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Upgraded app-admin/sudo to v1.9.17_p1. This resolves CVE-2025-32462 and CVE-2025-32463.
June 30, 2025
cos-117-18613-263-56
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Upgraded dev-libs/libusb to v1.0.29.
Added support for the Lustre 2.14.0_p212 drivers.
Upgraded elfutils to version 0.193. This fixes CVE-2025-1365, CVE-2025-1371, CVE-2025-1372, and CVE-2025-1377.
Upgraded sys-apps/less to v679.
Upgrade libarchive to version 3.8.1. This fixes CVE-2025-5914.
Runtime sysctl changes:
- Changed: fs.file-max: 811785 -> 811719
June 23, 2025
cos-117-18613-263-49
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Updated the Linux kernel to v6.6.93. This includes mitigations for CVE-2024-28956, which may negatively impact the performance of Intel machine types.
Fixed KCTF-d35acc1 in the Linux kernel.
Added a kernel patch to address bcache latency.
Runtime sysctl changes:
- Changed: fs.file-max: 811766 -> 811785
June 18, 2025
cos-117-18613-263-45
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811775 -> 811766
Upgraded app-misc/jq to v1.8.0. This fixes CVE-2025-48060.
June 17, 2025
cos-117-18613-263-42
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Fixed CVE-2024-41110 in Docker.
Fixed CVE-2025-47273 in dev-python/setuptools.
Added support for the Lustre 2.14.0_p198 drivers.
Updated systemd to v254.26. This resolves CVE-2025-4598.
Added support for Nvidia driver version 575.57.08.
Fixed CVE-2025-37800 in the Linux kernel.
Fixed KCTF-ac9fe7d in the kernel.
Fixed CVE-2025-37803 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811818 -> 811775
Updated cos-gpu-installer to v2.5.3.
June 02, 2025
cos-117-18613-263-24
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Fixed KCTF-8478a72 in the Linux kernel.
Fixed CVE-2024-23337 in app-misc/jq.
Updated cos-gpu-installer to v2.5.2: Added support for OTHER/NO_GPU cases to enable GPU driver preloading on the ARM64 architecture and added support for IMEX Driver configuration installation for NVIDIA_GB200 machine.
Upgraded sys-apps/less to v678.
Fixed KCTF-3f98113 in the Linux kernel.
Fixed CVE-2024-43840 in the Linux kernel.
May 27, 2025
cos-117-18613-263-19
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811793 -> 811830
Support NVIDIA MFT Tools on COS.
Fixed CVE-2025-46836 in sys-apps/net-tools.
Inject IMEX channel char device for GB200 GPUs.
Fixed CVE-20250-3198 in sys-libs/bintuils-libs.
Fixed KCTF-b3bf8f6 in the Linux kernel.
May 19, 2025
cos-117-18613-263-14
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Increased kdump memory reservation.
May 12, 2025
cos-117-18613-263-13
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.27 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811816 -> 811830
Fixed KCTF-3df275e in the Linux kernel.
Upgraded app-admin/google-guest-configs to v20250501.00.
Updated apparmor to 3.1.6. This fixes CVE-2016-1585.
Added support for 7th generation TPU devices.
Upgraded containerd to 1.7.27. Fixes CVE-2024-40635.
Fixed issue where modinfo could not display module signatures.
May 05, 2025
cos-117-18613-263-4
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.87 | v24.0.9 | v1.7.24 | See List |
This is an LTS Refresh release.
Upgraded net-libs/libtirpc to v1.3.6.
Upgraded dev-libs/double-conversion to v3.3.1.
Upgraded net-nds/rpcbind to v1.2.7.
Upgraded app-admin/sudo to v1.9.16_p2-r1.
Upgraded dev-db/sqlite to v3.49.1.
Upgraded net-fs/cifs-utils to v7.3, Upgraded sys-libs/talloc to v2.4.2.
Upgraded net-libs/libnetfilter_conntrack to v1.1.0.
Upgraded sys-libs/libcap to v2.71.
Upgraded sys-apps/grep to v3.12.
Updated dev-vcs/git to version 2.49.0. This fixed CVE-2024-52006, CVE-2024-50349
Updated NVIDIA GPU drivers to v535.247.01 for default/ R535, v550.163.01 for R550 and v570.133.20 for latest/R570. This resolves CVE-2025-23244.
Upgraded dev-libs/nss to v3.109.
Fix CVE-2025-32414, CVE-2025-32415 in dev-libs/libxml2.
Upgraded dev-libs/expat to v2.7.1.
Fixed CVE-2025-22035 in the Linux kernel.
Update dev-go/net in policy manager to v0.39.0. This fixes CVE-2025-22870.
Fixed KCTF-342debc in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811753 -> 811816
Upgraded sys-libs/libseccomp to v2.6.0-r2.
Upgraded app-admin/google-guest-configs to v20250328.00.
Upgraded sys-apps/acl to v2.3.2-r2.
Upgraded app-containers/cni-plugins to v1.6.2.
Fixed CVE-2025-1178,CVE-2025-1182 and CVE-2025-1181 in sys-libs/binutils-libs.
Fixed CVE-2025-22097 in the Linux kernel.
Upgraded app-arch/unzip to v6.0_p29.
Upgraded sys-apps/gentoo-functions to v1.7.3.
Upgraded net-dns/libidn2 to v2.3.8.
Upgraded dev-lang/go to v1.23.8.
Upgraded app-containers/docker-credential-helpers to v0.9.3.
Upgraded sys-apps/makedumpfile to v1.7.7.
April 29, 2025
cos-117-18613-164-124
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811760 -> 811753
Fixed CVE-2025-32728 in net-misc/openssh.
April 25, 2025
cos-117-18613-164-121
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2025-21908 in the Linux kernel.
Reverted a change in the linux kernel which caused nfs directories to unexpectedly be mounted as ro instead of rw.
Fixed CVE-2025-21991 in the Linux kernel.
Fixed CVE-2025-21962 in the Linux kernel.
Fixed CVE-2025-21980 in the Linux kernel.
Fixed CVE-2025-22005 in the Linux kernel.
Fixed CVE-2025-21922 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811760 -> 811799
Fixed CVE-2025-21919 in the Linux kernel.
Fixed CVE-2025-21963 in the Linux kernel.
Fixed CVE-2024-48615 in app-arch/libarchive.
Upgraded app-admin/node-problem-detector to v0.8.20.
Fixed CVE-2025-21964 in the Linux kernel.
Fixed CVE-2025-21920 in the Linux kernel.
Fixed CVE-2025-21997 in the Linux kernel.
Updated cos-gpu-installer to v2.5.0: Support IMEX Driver installation for NVIDIA_GB200 GPU device.
Fixed CVE-2025-21959 in the Linux kernel.
Fixed CVE-2025-21898 in the Linux kernel.
April 14, 2025
cos-117-18613-164-109
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2025-21853 in the Linux kernel.
Fixed CVE-2024-58070 in the Linux kernel.
Fixed CVE-2025-21887 in the Linux kernel.
Upgraded sys-apps/diffutils to v3.11-r2.
Modified toolbox to use unified cgroup hierarchy mode, when possible, instead of hybrid mode.
Fixed CVE-2025-21763 in the Linux kernel.
Fixed CVE-2025-21999 in the Linux kernel.
Upgraded dev-libs/libusb to v1.0.28.
Fixed CVE-2025-21867 in the Linux kernel.
Fixed CVE-2024-58083 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811785 -> 811760
March 31, 2025
cos-117-18613-164-98
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2025-21762 in the Linux kernel.
Fixed CVE-2025-21764 in the Linux kernel.
Fixed CVE-2024-56549 in the Linux kernel.
Fixed CVE-2025-21727 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811744 -> 811785
Fixed CVE-2025-21796 in the Linux kernel.
Fixed CVE-2025-21760 in the Linux kernel.
Updated dev-libs/expat to v2.7.0. This fixes CVE-2024-8176.
Fixed CVE-2024-57979 in the Linux kernel.
Fixed CVE-2025-21726 in the Linux kernel.
Fixed CVE-2025-21759 in the Linux kernel.
Fixed CVE-2025-21812 in the Linux kernel.
Fixed CVE-2024-57977 in the Linux kernel.
Fixed KCTF-0c3057a in the Linux kernel.
Fixed CVE-2024-50138 in the Linux kernel.
March 24, 2025
cos-117-18613-164-93
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811752 -> 811744
Fixed KCTF-647cef2 in the Linux kernel.
Fixed CVE-2025-21785 in the Linux kernel.
Added support for the Lustre 2.14.0 client drivers.
Fixed CVE-2025-21716 in the Linux kernel.
Fixed a race condition that could cause a kernel panic.
Fixed an issue that resulted in missing grub boot measurements in some machine configurations.
Added support for NVIDIA GB200 GPU with 570.124.06 GPU driver. This driver version has been assigned the latest, default, and R570 tags for this GPU type.
Upgraded dev-lang/go to v1.23.7.
Fixed CVE-2024-58005 in the Linux kernel.
March 17, 2025
cos-117-18613-164-81
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-58017 in the Linux kernel.
Fixed CVE-2025-21779 in the Linux kernel.
Fixed CVE-2025-21858 in the Linux kernel.
Fixed CVE-2023-45288 in app-containers/docker.
Runtime sysctl changes:
- Changed: fs.file-max: 811757 -> 811752
Fixed CVE-2024-57996 in the Linux kernel.
Fixed CVE-2024-58088 in the Linux kernel.
Fixed CVE-2025-21844 in the Linux kernel.
Fixed CVE-2025-21791 in the Linux kernel.
Fixed CVE-2025-21814 in the Linux kernel.
Fixed CVE-2025-21745 in the Linux kernel.
Added support for NVIDIA 570.124.06 GPU driver. Updated the R570, LATEST GPU driver label to version 570.124.06 for all GPU devices. Updated the DEFAULT GPU driver label to version 570.124.06 for NVIDIA_B200 and NVIDIA_H200 GPU devices.
Fixed CVE-2025-21854 in the Linux kernel.
Fixed CVE-2025-21863 in the Linux kernel.
Added support for iRDMA devices.
Fixed CVE-2025-21864 in the Linux kernel.
Fixed CVE-2025-21846 in the Linux kernel.
Fixed CVE-2025-21857 in the Linux kernel.
Upgraded net-misc/socat to v1.8.0.3.
March 12, 2025
cos-117-18613-164-68
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Disabled martian logging for ConnectX-7 network cards. These cards only communicate locally, but martian logging during communications with the host can lead to a race condition which causes GID table construction to sometimes fail.
Runtime sysctl changes:
- Changed: fs.file-max: 811762 -> 811757
Fixed CVE-2024-53589 in sys-libs/libutils-libs.
Fixed CVE-2025-26465 and CVE-2025-26466 in net-misc/openssh.
Upgraded sys-apps/which to v2.23.
Upgraded dev-go/crypto to v0.35.0. This fixes CVE-2025-22869.
Fixed CVE-2024-50017 in the Linux kernel.
Fixed console TTY leak in runc shim in containerd.
Updated dev-go/oauth2 to v0.27.0. This fixes CVE-2025-22868.
Upgraded sys-apps/diffutils to v3.11-r1.
Updated cos-gpu-installer to v2.4.8: Add the -skip-nvidia-smi flag to disable the execution of nvidia-smi verification during gpu driver installation.
Upgraded dev-libs/libxml2 to v1.12.10. This fixes CVE-2025-27113.
Fixed KCTF-8802766 in the Linux kernel.
Fixed KCTF-638ba50 in the Linux kernel.
Applied Intel patches to add iRDMA support in the Linux kernel.
Fixed CVE-2024-50146 in the Linux kernel.
Upgraded net-misc/wget to v1.25.0. This fixes CVE-2024-10524.
Fixed KCTF-fcdd224 in the Linux kernel.
March 03, 2025
cos-117-18613-164-49
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Upgraded moby/buildkit to v0.12.5. This fixes CVE-2024-23653 in app-containers/docker v24.0.9.
Fixed CVE-2025-21690 in the Linux kernel.
February 24, 2025
cos-117-18613-164-47
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2025-0395 in sys-libs/glibc.
Fixed CVE-2024-13176 in dev-libs/openssl.
Fixed CVE-2024-57951 in the Linux kernel.
Updated app-admin/google-guest-configs to v20250207.00.
Fixed CVE-2024-9287 in dev-lang/python.
Runtime sysctl changes:
- Changed: fs.file-max: 811817 -> 811792
Fixed CVE-2024-57949 in the Linux kernel.
February 18, 2025
cos-117-18613-164-38
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-9287 in dev-lang/python.
Runtime sysctl changes:
- Changed: fs.file-max: 811817 -> 811794
Fixed CVE-2025-0395 in sys-libs/glibc.
February 10, 2025
cos-117-18613-164-28
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2025-21666 in the Linux kernel.
Fixed CVE-2024-49994 in the Linux kernel.
Fixed CVE-2025-21667 in the Linux kernel.
Fixed CVE-2024-50304 in the Linux kernel.
Support for NVIDIA B200 GPU – Added support for the R570 driver series, including version 570.86.15. This version has been assigned the latest, default, and R570 tags.
Upgraded app-admin/fluent-bit to v3.1.10.
Updated Konlet to v0.13.4.
Fixed CVE-2025-0840 in binutils.
Fixed CVE-2025-21673 in the Linux kernel.
Fixed CVE-2024-50014 in the Linux kernel.
Fixed CVE-2025-21671 in the Linux kernel.
Fixed CVE-2025-21665 in the Linux kernel.
Upgraded sys-apps/hwdata to v0.391.
Updated cos-gpu-installer to v2.4.7: 1.Added Support for NVIDIA B200 GPU. 2.Enabled --prepare-build-tools flag to preload GPU driver metadata for ARM64
Fixed CVE-2025-21670 in the Linux kernel.
Fixed CVE-2025-21669 in the Linux kernel.
Updated the default tag of the GPU driver supporting the NVIDIA H200 GPU device to 570.86.15.
Fixed CVE-2025-21683 in the Linux kernel.
February 03, 2025
cos-117-18613-164-13
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Backported Intel TDX (Trust Domain Extensions) and confidential computing patches from Linux kernel 6.7 upstream to enable TDX feature support.
Added NVIDIA GPU driver's R570 branch. Updated the LATEST GPU driver label to version 570.86.15.
Enabled Grace platform support: Enabled DMA-BUF shared memory support for the ARM64 kernel.
Enabled Grace platform support: Enabled memory_hotplug and device_private in the ARM64 kernel.
Fixed CVE-2024-53170 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811776 -> 811757
Enabled Grace platform support: Enabled SMMU (v3) for ARM64 kernel.
Enabled Grace platform support: Enabled ATS/PASID(PCI) for ARM64 kernel.
Enabled ECC kernel modules required for confidential GPU functionality.
Fixed KCTF-bc50835 in the Linux kernel.
Fixed CVE-2024-53124 in the Linux kernel.
January 27, 2025
cos-117-18613-164-4
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.72 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-56617 in the Linux kernel.
Fixed CVE-2024-57890 in the Linux kernel.
Fixed CVE-2024-45306 and CVE-2024-47814 in vim.
This is an LTS Refresh release.
Fixed CVE-2024-45306 and CVE-2024-47814 in vim-core.
Update NVIDIA GPU drivers to v535.230.02 for default/R535 and v550.144.03 for R550 for all GPUs. This resolves CVE-2024-53869, CVE-2024-0150, CVE-2024-0149, CVE-2024-0147 and CVE-2024-0131.
Upgraded dev-python/configobj to v5.0.9.
Fixed CVE-2024-56369 in the Linux kernel.
Upgraded sys-apps/gentoo-functions to v1.7.2.
Upgraded sys-apps/file to v5.46-r2.
Fixed CVE-2024-55916 in the Linux kernel.
Fixed CVE-2024-56615 in the Linux kernel.
Fixed CVE-2024-57841 in the Linux kernel.
Upgraded app-arch/lz4 to v1.10.0-r1.
Upgraded dev-libs/nss to v3.105.
Upgraded app-containers/docker-credential-gcr to v2.1.25.
Upgraded dev-libs/libxml2 to version 2.12.9. This fixes CVE-2024-40896.
Upgraded app-admin/google-osconfig-agent to v20240927.00.
Upgraded app-emulation/cloud-init to v23.4.4.
Upgraded dev-db/sqlite to v3.46.1.
Fixed CVE-2024-54683 in the Linux kernel.
Fixed CVE-2024-56779 in the Linux kernel.
Added NVIDIA GPU drivers R565 branch - Update R565, latest driver to v565.57.01.
Fixed CVE-2024-53166 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811796 -> 811776
Upgraded net-libs/libtirpc to v1.3.5.
January 17, 2025
cos-117-18613-75-114
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-56786 in the Linux kernel.
Fixed CVE-2024-56783 in the Linux kernel.
Fixed CVE-2024-56755 in the Linux kernel.
Fixed CVE-2024-56720 in the Linux kernel.
Upgraded rsync to version 3.3.0-r2. This fixes CVE-2024-12084, CVE-2024-12085, CVE-2024-12086, CVE-2024-12087, CVE-2024-12088, and CVE-2024-12747.
Fixed CVE-2024-53185 in the Linux kernel.
Fixed CVE-2024-56780 in the Linux kernel.
Fixed CVE-2024-56600 in the Linux kernel.
Fixed CVE-2024-56672 in the Linux kernel.
Fixed CVE-2024-56664 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811744 -> 811796
Fixed CVE-2024-56756 in the Linux kernel.
Fixed CVE-2024-53173 in the Linux kernel.
Fixed CVE-2024-56675 in the Linux kernel.
Fixed CVE-2024-56658 in the Linux kernel.
Fixed CVE-2024-53128 in the Linux kernel.
Fixed CVE-2024-53206 in the Linux kernel.
Fixed CVE-2024-53202 in the Linux kernel.
Fixed CVE-2024-56601 in the Linux kernel.
January 13, 2025
cos-117-18613-75-102
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-56614 in the Linux kernel.
Fixed CVE-2024-56606 in the Linux kernel.
Upgraded sys-apps/file to v5.46-r1.
Fixed CVE-2024-56745 in the Linux kernel.
Fixed CVE-2024-53146 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811756 -> 811744
Fixed CVE-2024-56694 in the Linux kernel.
Fixed CVE-2024-56688 in the Linux kernel.
Fixed CVE-2024-53096 in the Linux kernel.
Upgraded nvidia-container-toolkit to v1.17.3.
Fixed CVE-2024-56739 in the Linux kernel.
Upgraded net-misc/socat to v1.8.0.2.
Fixed CVE-2024-53151 in the Linux kernel.
Fixed CVE-2024-56729 in the Linux kernel.
Fixed CVE-2024-56763 in the Linux kernel.
Fixed CVE-2024-56760 in the Linux kernel.
January 06, 2025
cos-117-18613-75-91
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2023-52920 in the Linux kernel.
Fixed KCTF-5eb7de8 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811782 -> 811756
Fixed KCTF-f8d4bc4 in the Linux kernel.
January 02, 2025
cos-117-18613-75-89
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-53121 in the Linux kernel.
Fixed CVE-2024-53135 in the Linux kernel.
Upgraded nvidia-container-toolkit to v1.17.0. This fixes CVE-2024-0134.
Fixed CVE-2024-49934 in the Linux kernel.
Fixed CVE-2024-53091 in the Linux kernel.
Upgraded dev-go/crypto to v0.31.0. This fixes CVE-2024-45337.
Fixed CVE-2024-53113 in the Linux kernel.
Updated google.golang.org/grpc to v1.56.3 and upgrade golang.org/x/net to v0.23.0 in docker and cri-tools. This fixes CVE-2023-44487 and CVE-2023-45288.
Fixed CVE-2024-50191 in the Linux kernel.
Fixed CVE-2024-53100 in the Linux kernel.
Fixed CVE-2024-49926 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811809 -> 811782
Fixed CVE-2024-53099 in the Linux kernel.
Fixed CVE-2024-53119 in the Linux kernel.
Update dev-go/net in policy manager to v0.33.0. This fixes CVE-2024-45338.
Fixed CVE-2024-53097 in the Linux kernel.
Fixed CVE-2024-53142 in the Linux kernel.
Fixed CVE-2024-50256 in the Linux kernel.
Fixed CVE-2024-53136 in the Linux kernel.
Fixed CVE-2024-53140 in the Linux kernel.
Fixed CVE-2024-53141 in the Linux kernel.
Fixed CVE-2024-53093 in the Linux kernel.
December 16, 2024
cos-117-18613-75-72
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Upgraded sys-apps/hwdata to v0.390.
Disabled CONFIG_DEBUG_PREEMPT in the Linux kernel. This should improve performance for some workloads.
Fixed CVE-2024-50186 in the Linux kernel.
Upgraded sys-apps/file to v5.46.
Updated app-admin/google-guest-configs to v20241205.00.
December 09, 2024
cos-117-18613-75-66
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811804 -> 811763
Support NVIDIA_H200 GPU - Added support for the R560 series, including driver versions 560.35.03. Added support for the R550 series, including driver versions 550.127.05 and 550.90.12. Assigned the latest, default, and R560 tags to driver version 560.35.03. Assigned the R550 tag to driver version 550.127.05.
Fixed CVE-2024-50140 in the Linux kernel.
Fixed CVE-2024-50278 in the Linux kernel.
Upgraded cos-gpu-installer to v2.4.6: Support NVIDIA_H200 GPU in cos-gpu-installer
December 04, 2024
cos-117-18613-75-60
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.24 | See List |
Fixed CVE-2024-53052 in the Linux kernel.
Fixed CVE-2024-50215 in the Linux kernel.
Upgraded containerd from 1.7.23 to 1.7.24.
Fixed CVE-2024-50169 in the Linux kernel.
Fixed CVE-2024-50251 in the Linux kernel.
Fixed CVE-2024-50162 in the Linux kernel.
Fixed CVE-2024-50226 in the Linux kernel.
Fixed CVE-2024-50060 in the Linux kernel.
Fixed CVE-2024-50154 in the Linux kernel.
Fixed CVE-2024-50192 in the Linux kernel.
Fixed CVE-2024-50262 in the Linux kernel.
Fixed CVE-2024-50163 in the Linux kernel.
Fixed CVE-2024-50275 in the Linux kernel.
Fixed CVE-2024-50063 in the Linux kernel.
Fixed CVE-2024-50147 in the Linux kernel.
Upgraded cos-gpu-installer to v2.4.4. This fixes an issue where GPU drivers that only have two numeric version components could not be loaded.
Fixed CVE-2024-50182 in the Linux kernel.
Fixed CVE-2024-50223 in the Linux kernel.
Upgraded net-misc/socat to v1.8.0.1.
Upgraded sys-apps/less to v668.
Upgraded sys-process/lsof to v4.99.4.
Fixed CVE-2024-50194 in the Linux kernel.
Fixed CVE-2024-50249 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811800 -> 811804
Fixed CVE-2024-50258 in the Linux kernel.
Fixed CVE-2024-50279 in the Linux kernel.
Fixed CVE-2024-53054 in the Linux kernel.
Upgraded sys-apps/makedumpfile to v1.7.6.
Fixed CVE-2024-50228 in the Linux kernel.
Fixed KCTF-6ca5753 in the Linux kernel.
Fixed CVE-2024-50142 in the Linux kernel.
Fixed CVE-2024-50099 in the Linux kernel.
Upgraded app-shells/dash to v0.5.12-r1.
Updated app-admin/google-guest-configs to 20241121.00. This enables intent based NIC naming scheme.
Fixed CVE-2024-50152 in the Linux kernel.
Fixed CVE-2024-50271 in the Linux kernel.
Updated net-misc/curl to v8.11.0. This fixes CVE-2024-9681. Added duphandle-init-netrc.patch, netrc-large-file.patch, setopt-http_content_decoding.patch to fix regression issues in curl v8.11.0.
Fixed CVE-2024-50257 in the Linux kernel.
Fixed CVE-2024-53042 in the Linux kernel.
Fixed CVE-2024-50222 in the Linux kernel.
Fixed CVE-2024-50153 in the Linux kernel.
Fixed CVE-2024-50272 in the Linux kernel.
Fixed CVE-2024-53082 in the Linux kernel.
Fixed CVE-2024-50143 in the Linux kernel.
Fixed CVE-2024-50151 in the Linux kernel.
Fixed CVE-2024-53066 in the Linux kernel.
Fixed CVE-2024-50195 in the Linux kernel.
Fixed CVE-2024-50141 in the Linux kernel.
November 18, 2024
cos-117-18613-75-37
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.23 | See List |
Fixed CVE-2024-50115 in the Linux kernel.
Fixed CVE-2024-50130 in the Linux kernel.
Fixed CVE-2024-50010 in the Linux kernel.
Fixed CVE-2024-50120 in the Linux kernel.
Fixed CVE-2024-50121 in the Linux kernel.
Fixed CVE-2024-50101 in the Linux kernel.
Fixed CVE-2024-50095 in the Linux kernel.
Fixed CVE-2024-50110 in the Linux kernel.
Fixed CVE-2024-50131 in the Linux kernel.
Fixed CVE-2024-50066 in the Linux kernel.
November 11, 2024
cos-117-18613-75-26
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.23 | See List |
Updated runc to version 1.1.14. This fixes CVE-2024-45310, CVE-2024-9341, CVE-2024-9407, and CVE-2024-9675
Fixed CVE-2024-50076 in the Linux kernel.
Fixed CVE-2024-50036 in the Linux kernel.
Fixed CVE-2024-50067 in the Linux kernel.
Fixed KCTF-2e95c43 in the Linux kernel.
Fixed CVE-2024-50602 in dev-libs/expat.
Fixed CVE-2024-50038 in the Linux kernel.
Fixed CVE-2024-50024 in the Linux kernel.
Fixed CVE-2024-50072 in the Linux kernel.
Fixed KCTF-8ea6073 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811757 -> 811721
Fixed CVE-2024-50082 in the Linux kernel.
November 06, 2024
cos-117-18613-75-7
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.23 | See List |
Runtime sysctl changes:
- Changed: fs.file-max: 811796 -> 811757
Upgraded sys-apps/xemu to v0.0.6
October 31, 2024
cos-117-18613-75-4
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.56 | v24.0.9 | v1.7.23 | See List |
This is an LTS Refresh release.
Fixed CVE-2024-47739 in the Linux kernel.
Fixed CVE-2024-47706 in the Linux kernel.
Fixed CVE-2024-47700 in the Linux kernel.
Fixed CVE-2024-47682 in the Linux kernel.
Fixed CVE-2024-50019 in the Linux kernel.
Fixed CVE-2024-50039 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811706 -> 811796
Fixed CVE-2024-47692 in the Linux kernel.
Fixed CVE-2024-47688 in the Linux kernel.
Fixed CVE-2024-49975 in the Linux kernel.
Fixed CVE-2024-49889 in the Linux kernel.
Fixed CVE-2024-50046 in the Linux kernel.
Fixed CVE-2024-47728 in the Linux kernel.
Fixed CVE-2024-50015 in the Linux kernel.
Fixed CVE-2024-50035 in the Linux kernel.
Fixed CVE-2024-50055 in the Linux kernel.
Fixed CVE-2024-50045 in the Linux kernel.
Fixed CVE-2024-50033 in the Linux kernel.
Fixed CVE-2024-49860 in the Linux kernel.
Fixed CVE-2024-47727 in the Linux kernel.
Fixed CVE-2024-49851 in the Linux kernel.
Fixed CVE-2024-50058 in the Linux kernel.
Fixed CVE-2024-47701 in the Linux kernel.
Fixed CVE-2024-50023 in the Linux kernel.
Fixed CVE-2024-47684 in the Linux kernel.
Fixed CVE-2024-47744 in the Linux kernel.
Fixed CVE-2024-47737 in the Linux kernel.
Fixed CVE-2024-50000 in the Linux kernel.
Fixed CVE-2024-47745 in the Linux kernel.
Fixed CVE-2024-47660 in the Linux kernel.
Fixed CVE-2024-49850 in the Linux kernel.
Fixed CVE-2024-47696 in the Linux kernel.
Added NVIDIA GPU drivers R560 branch - Update R560, latest driver to v560.35.03.
Update NVIDIA GPU drivers to v535.216.01 for default/R535 and v550.127.05 for R550 for all GPUs. This resolves CVE-2024-0126.
Fixed CVE-2024-47743 in the Linux kernel.
Fixed CVE-2024-50064 in the Linux kernel.
Fixed CVE-2024-49858 in the Linux kernel.
Fixed CVE-2024-47734 in the Linux kernel.
Fixed CVE-2024-47742 in the Linux kernel.
Fixed CVE-2024-50047 in the Linux kernel.
Fixed CVE-2024-47668 in the Linux kernel.
Fixed CVE-2024-47693 in the Linux kernel.
Fixed CVE-2024-47679 in the Linux kernel.
Fixed CVE-2024-49936 in the Linux kernel.
Update R550, latest driver to v550.90.12.
Fixed CVE-2024-47678 in the Linux kernel.
Fixed CVE-2024-47675 in the Linux kernel.
October 28, 2024
cos-117-18613-0-99
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.44 | v24.0.9 | v1.7.23 | See List |
Fixed CVE-2024-47674 in the Linux kernel.
Fixed CVE-2024-44991 in the Linux kernel.
Fixed CVE-2024-47685 in the Linux kernel.
Runtime sysctl changes:
- Changed: fs.file-max: 811768 -> 811706