Google Distributed Cloud air-gapped 1.14.4 release notes
Stay organized with collections
Save and categorize content based on your preferences.
May 23, 2025
Google Distributed Cloud (GDC) air-gapped 1.14.4 is available.
See the product overview to learn about the
features of Distributed Cloud.
The following new features are available:
Networking:
Added session affinity for external load balancers. Use session affinity for
ELBs to ensure that requests from the same client are consistently routed to the same
backend. For more information, see Configure external load
balancers.
Resource Manager:
Added the capability to create asymmetrical organization configurations across
zones in a GDC universe. This is a
Preview feature.
Storage:
Added support for replicated storage resources such as volumes and buckets in
asynchronous mode for disaster recovery scenarios. These storage resource
options provide asynchronous data replication between zones in a
GDC universe. For more information, see
Data protection with multi-zone storage.
The first role binding attached to a new service identity using the
GDC console does not take effect, and causes issues with all
proceeding role binding additions.
Multi-tenancy:
GDC console does not indicate node pool creation failures
Resource Manager:
The global v1 organization's replica status reports a zonal v1 organization configuration for all zones, regardless of whether it was actually created.
Server:
The BIOS credential rotation is stuck in the reset-requested stage.
Storage:
Deleting an empty bucket from the GDC console fails.
Upgrade:
Shared service cluster annotation is not updated after a successful cluster upgrade.
Virtual machines:
An image import fails.
The following issues are fixed:
Cluster management:
Fixed the issue where the kub-gpu-controller subcomponent did not
reconcile for the gdchservices organization.
Networking:
Fixed the issue where data plane and management ingress gateways did not
reconcile.
Resource Manager:
Fixed the issue where the failing create-ansible-playbooks job caused
organization problems.
System Artifact Registry:
Fixed the issue where a false alarm can be triggered in response to transient errors when reconciling the HarborRobotAccount resource. For more information, see Known issues.
The following changes are identified:
Version updates:
The Google Distributed Cloud for bare metal version is updated to
1.30.500-gke.127 to apply the latest security patches and important updates.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-25 UTC."],[],[],null,["# Google Distributed Cloud air-gapped 1.14.4 release notes\n\n\u003cbr /\u003e\n\nMay 23, 2025\n------------\n\n*** ** * ** ***\n\nGoogle Distributed Cloud (GDC) air-gapped 1.14.4 is available. \nSee the [product overview](/distributed-cloud/hosted/docs/latest/gdch/overview) to learn about the features of Distributed Cloud.\n\n*** ** * ** ***\n\nThe following new features are available:\n\n**Networking**:\n\n- Added session affinity for external load balancers. Use session affinity for ELBs to ensure that requests from the same client are consistently routed to the same backend. For more information, see [Configure external load\n balancers](/distributed-cloud/hosted/docs/latest/gdch/platform/pa-user/elb-service).\n\n**Resource Manager**:\n\n- Added the capability to create asymmetrical organization configurations across zones in a GDC universe. This is a [Preview](/distributed-cloud/hosted/docs/latest/gdch/resources/feature-stages#preview) feature.\n\n**Storage**:\n\n- Added support for replicated storage resources such as volumes and buckets in asynchronous mode for disaster recovery scenarios. These storage resource options provide asynchronous data replication between zones in a GDC universe. For more information, see [Data protection with multi-zone storage](/distributed-cloud/hosted/docs/latest/gdch/resources/multi-zone/data-protection).\n\n**Vertex AI**:\n\n- Added [Generative AI capabilities and Text Embedding models](/distributed-cloud/hosted/docs/latest/gdch/application/ao-user/genai/genai-overview).\n- Added the Preview feature to [translate any language into German](/distributed-cloud/hosted/docs/latest/gdch/application/ao-user/vai-translation-langs#SupportedLanguages-to-German) with Vertex AI Translation.\n\n*** ** * ** ***\n\nUpdated the Rocky OS image version to 20250219 to apply the latest security patches and important updates.\n\nThe following security vulnerabilities are fixed:\n\n- [CVE-2022-40303](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40303)\n- [CVE-2022-40304](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40304)\n- [CVE-2022-49043](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-49043)\n- [CVE-2023-32324](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32324)\n- [CVE-2023-32360](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32360)\n- [CVE-2023-33460](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33460)\n- [CVE-2023-34241](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34241)\n- [CVE-2024-35235](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35235)\n- [CVE-2024-47175](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47175)\n- [CVE-2024-52531](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52531)\n\n*** ** * ** ***\n\n*** ** * ** ***\n\nThe following issues are identified:\n\n**Backup and restore**\n\n- The UI incorrectly displays a disk size as 0Mb.\n\n**IAM**\n\n- The first role binding attached to a new service identity using the GDC console does not take effect, and causes issues with all proceeding role binding additions.\n\n**Multi-tenancy**:\n\n- GDC console does not indicate node pool creation failures\n\n**Resource Manager**:\n\n- The global v1 organization's replica status reports a zonal v1 organization configuration for all zones, regardless of whether it was actually created.\n\n**Server:**\n\n- The BIOS credential rotation is stuck in the reset-requested stage.\n\n**Storage:**\n\n- Deleting an empty bucket from the GDC console fails.\n\n**Upgrade:**\n\n- Shared service cluster annotation is not updated after a successful cluster upgrade.\n\n**Virtual machines:**\n\n- An image import fails.\n\n*** ** * ** ***\n\nThe following issues are fixed:\n\n**Cluster management**:\n\n- Fixed the issue where the `kub-gpu-controller` subcomponent did not reconcile for the `gdchservices` organization.\n\n**Networking**:\n\n- Fixed the issue where data plane and management ingress gateways did not reconcile.\n\n**Resource Manager**:\n\n- Fixed the issue where the failing `create-ansible-playbooks` job caused organization problems.\n\n**System Artifact Registry**:\n\n- Fixed the issue where a false alarm can be triggered in response to transient errors when reconciling the `HarborRobotAccount` resource. For more information, see [Known issues](/distributed-cloud/hosted/docs/latest/gdch/resources/known-issues/known-issues-114x#harbor-robot-account-false-alarm).\n\n*** ** * ** ***\n\nThe following changes are identified:\n\n**Version updates**:\n\n- The Google Distributed Cloud for bare metal version is updated to 1.30.500-gke.127 to apply the latest security patches and important updates. \n\n See the [Google Distributed Cloud for bare metal 1.30.500-gke.127 release notes](https://cloud.google.com/kubernetes-engine/distributed-cloud/bare-metal/docs/release-notes-ver-1#release_130500-gke127) for details."]]
