The following Rancher product versions became available recently:
|Rancher Version||Release Date||Release Notes||Support Matrix||Default k8s version|
|v2.4.4||June 01, 2020||Release Notes||Support Matrix||v1.17.6|
|v2.3.8||June 01, 2020||Release Notes||Support Matrix||v1.17.5|
|v2.2.13||June 01, 2020||Release Notes||Support Matrix||v1.15.12|
|RancherOS Version||Release Date||Release Notes||Default Docker version|
|v1.5.6||June 03, 2020||Release Notes||Docker docker-19.03.11|
The Rancher releases were made available to primarily address the below CVEs, on the same day when Kubernetes publicly announced these CVEs.
- CVE-2020-8555: kube-controller-manager SSRF
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- Updated Nginx to the latest version
- Docker 19.03.11 is available as part of the Docker install script and addresses Docker CVE-2020-13401
Also, refer Rancher terms of service page for updates to the support matrices.