Ubuntu on Amazon Elastic Kubernetes Service (EKS)

Canonical and Amazon work together to make Ubuntu worker nodes available for Amazon’s Elastic Kubernetes Services (EKS). This fully-managed service makes it easy to use Kubernetes on AWS, without being an expert in managing Kubernetes clusters.

These images are customised specifically for the EKS service, and are not intended as general OS images. To deploy an EKS cluster, follow the EKS user guide .

Latest changes

20230804: Add 1.24, 1.25, 1.26 and 1.27 amis with serial 20230804. Add 1.23 amis with serial 20230802.

20230623

Add 1.27 amis with serial 20230622. Add 1.23, 1.24, 1.25 and 1.26 amis with serial 20230623.

20230517

Add 1.26, 1.25, 1.24, 1.23 and 1.22 amis with serial 20230517, to address #2017782 and #2012689

20230424

Add 1.26 amis with serial 20230424.

20230420

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230420.

20230328

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230328.

20230322

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230322.

20230315

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230315, to address #2011408

20230303

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230303.

20230224

Add 1.25 amis with serial 20230224.

20230131

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20230131, to address #2003926

20230118

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20230118, to address #2002659

20230114

Add 1.24, 1.23 platform amis with serial 20230114 and 1.22 and 1.21 platform amis with serial 20230113. Those include updated versions for kubelet and kubectl.

20221208

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20221208.1. Those include updated versions for kubelet and kubectl (1.24.7, 1.23.13, 1.22.16 and 1.21.14).

20221206

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20221206.1.

20221111

EKS 1.20 is EOL so drop those AMIs.

20221104

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221104.

20221018

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221018, to address CVE-2022-2602

20221014

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221014.

20221011

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221011.

20220921

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20220921.

20220913

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20220913.

20220830

EKS 1.19 is EOL so drop those AMIs.

20220822

Add 1.23 amis with serial 20220822.2.

20220810

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220810.

20220718

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220718.

20220713

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220713.

20220623

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220623.

20220617

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220617.

20220522

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220522.

20220518.1

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220518.1. For images using docker, log rotation is setup now ( #1971765 )

20220503

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220503.

20220419.1

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220419.1. Pause container is now configured via --pod-infra-container-image kubelet option for both dockershim and containerd container runtimes ( #1968830 ).

20220406

Add 1.22 platform AMI with serial 20220406. All AMIs for EKS 1.22 will use containerd as Kubernetes container runtime instead of dockershim. Also EKS 1.18 is EOL so drop it.

20220404

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220404.

20220402

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220402.

20220325

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220325.

20220323

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220323.

20220308

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220308, to address CVE-2022-0847 , CVE-2022-0001 and CVE-2022-23960 .

20220304

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220303.

20220222

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220221.1. The EKS related snaps switched to core20.

20220118

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220118, for CVE-2022-0185 .

20220110.2/20220111

Add 1.21 and 1.20 platform amis with serial 20220110.2, 1.19 and 1.18 platform amis with serial 20220111, for CVE-2021-4204 .

20220107

Add 1.21, 1.20, 1.19 and 1.8 platform amis with serial 20220107.

20211124

EKS 1.17 is now EOL, removed images from page

20211005

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20211005 and 1.17 platform amis with serial 20211004 for CVE-2021-41103 .

20211001

EKS 1.16 is now EOL, removed images from page

20210823

Add 1.21 platform amis with serial 20210823.

20210823

Add 1.20 platform amis with serial 20210823. This includes updated versions (1.20.7) of kubelet and kubectl.

20210720

Address numerous kernel and systemd CVEs.

20210623/20210623.1

Add 1.20, 1.19 and 1.18 platform amis with serial 20210623 and 1.17 and 1.16 platform amis with serial 20210623.1 for CVE-2021-3600 and CVE-2021-3609.

20210618

Add 1.20 platform amis with serial 20210618. This adds back the CNI plugins. See LP:#1932116

20210609

Add 1.20 platform amis with serial 20210609

20210608

Add 1.17 and 1.18 platform amis with serial 20210608. This includes updated versions (1.17.17 and 1.18.16) of kubelet and kubectl.

20210517

EKS 1.15 is now EOL, removed images from page

20210426

Add 1.15, 1.16 and 1.17 platform amis with serial 20210426. This includes a fix when Metadata version is set to V2 only (token required). See LP:#1925487

20210423

Add 1.18 & 1.19 platform amis with serial 20210423.1. This includes a fix when Metadata version is set to V2 only (token required). See LP:#1925487

20210419

Add 1.19 platform amis with serial 20210419. This includes updated versions (1.19.8) of kubelet and kubectl.

20210416

Updates to EKS AMIs for all Kubernetes versions for CVE-2021-3493, CVE-2021-3492 and CVE-2021-29154.

20210413

Add 1.19 platform amis with serial 20210409. This includes updated versions (1.19.6) of kubelet and kubectl.

20210217

Add 1.19 platform amis with serial 20210211.

20210127

Update all images with fixes for cloud-init key handling issue. See the cloud-init changelog in launchpad for specific details on the fix.

20210108

Update all images with the latest docker.io and containerd from archive

20210107

EKS 1.14 is now EOL, removed images from page

20201211

Updates to EKS AMIs for Kubernetes 1.18 due to RAID 10 kernel regression

20201130

Updates to EKS AMIs for Kubernetes 1.18 for CVE-2020-15257

20201015

Updates to EKS AMIs for Kubernetes 1.18 for CVE-2020-15157

Show worker node images for: Kubernetes

1.27

1.26

1.25

1.24

1.23

Region	Use this or later image
Africa (Capetown) (af-south-1)	ami-0483b62940292b986 _amd64 ami-0b023a89d6eeef866 _arm64
Asia Pacific (Hong Kong) (ap-east-1)	ami-06fbe81054653bf63 _amd64 ami-09b795491db983d07 _arm64
Asia Pacific (Tokyo) (ap-northeast-1)	ami-08ea0e3d7d15be3b3 _amd64 ami-0ab0cf6db6ef9d324 _arm64
Asia Pacific (Seoul) (ap-northeast-2)	ami-0b8321fa96578562d _amd64 ami-0b6190c4d4e0f6b0b _arm64
Asia Pacific (Osaka-Local) (ap-northeast-3)	ami-05bf24aa28d7cc115 _amd64 ami-0d8994d306aefb5e6 _arm64
Asia Pacific (Mumbai) (ap-south-1)	ami-09c707dbc8d376392 _amd64 ami-09b825ad3fd819d5e _arm64
Asia Pacific (Hyderabad) (ap-south-2)	ami-0758e4f26b849d129 _amd64 ami-0e8f5dd0c50d0546f _arm64
Asia Pacific (Singapore) (ap-southeast-1)	ami-0467b7d4cb8eec950 _amd64 ami-0118dd573319c566b _arm64
Asia Pacific (Sydney) (ap-southeast-2)	ami-08d4c84b37b71bdb7 _amd64 ami-0c2098d34c4354df5 _arm64
Asia Pacific (Jakarta) (ap-southeast-3)	ami-0f40aab0ee9c9f0fc _amd64 ami-064b389d3ec613467 _arm64
Asia Pacific (Melbourne) (ap-southeast-4)	ami-0815ec90490b82034 _amd64 ami-0eb948ab7ad623fe2 _arm64
Canada (Central) (ca-central-1)	ami-010272aab50f6d199 _amd64 ami-0cd3e820b3e1e2d24 _arm64
EU (Frankfurt) (eu-central-1)	ami-0ff21ec7370b1f3fb _amd64 ami-0527a2741f54ea347 _arm64
EU (Zurich) (eu-central-2)	ami-0038baded3107ee87 _amd64 ami-07c85e6c602f72031 _arm64
EU (Stockholm) (eu-north-1)	ami-055db9ca00d22e406 _amd64 ami-0ad5d8231c28acbef _arm64
EU (Milan) (eu-south-1)	ami-0ea0aeee64d3a6190 _amd64 ami-0bcac1fd761f23f96 _arm64
EU (Spain) (eu-south-2)	ami-06b26a57bbf50a59a _amd64 ami-0e03e8f193968752d _arm64
EU (Ireland) (eu-west-1)	ami-0434a8ce30a1cdc8b _amd64 ami-009b9c08f8042a999 _arm64
EU (London) (eu-west-2)	ami-04654c8100df2abed _amd64 ami-0209533bb4523395f _arm64
EU (Paris) (eu-west-3)	ami-0477e72b03c013a81 _amd64 ami-0f80b046342eb0aed _arm64
Middle East (Israel) (il-central-1)	ami-06ce40952e44e6f50 _amd64 ami-0b2d07f42f6cf1898 _arm64
Middle East (UAE) (me-central-1)	ami-0509b0fa3c9e1d2e9 _amd64 ami-0881fe8b081e3afce _arm64
Middle East (Bahrain) (me-south-1)	ami-0dac1c09f67fd6754 _amd64 ami-0e045d27ee4091b85 _arm64
South America (São Paulo) (sa-east-1)	ami-041c823e2521503c6 _amd64 ami-0cd10d1f8c14ad299 _arm64
US East (Virginia) (us-east-1)	ami-032a4564f2f4ba130 _amd64 ami-076e47d359a7c9113 _arm64
US East (Ohio) (us-east-2)	ami-000c38e2fb6e05120 _amd64 ami-0075b6efa1008022a _arm64
US West (N. California) (us-west-1)	ami-07bcae659b63f0faa _amd64 ami-04911d37ca71cca7e _arm64
US West (Oregon) (us-west-2)	ami-01eaac45b7564526b _amd64 ami-03ec41df3af7cd057 _arm64

Kubernetes 1.27

The latest Ubuntu worker node AMIs for Kubernetes 1.27 (N.B. EKS may not be available in some of these regions, check the list of current EKS regions ):

Important: EKS images that support Kubernetes 1.27 use the default amazon-eks-nodegroup.yaml , as specified in the AWS EKS Console Getting Started Guide . To use Ubuntu EKS images with the nodegroup template in Step 3: Launch and Configure Amazon EKS Worker Nodes, click the 'Launch Workers' link for your your region and Kubernetes release version, and enter the Ubuntu AMI ID for your region, listed on this page, into the field labeled 'NodeImageId'.