Ubuntu on Amazon Elastic Kubernetes Service (EKS)

Canonical and Amazon work together to make Ubuntu worker nodes available for Amazon’s Elastic Kubernetes Services (EKS). This fully-managed service makes it easy to use Kubernetes on AWS, without being an expert in managing Kubernetes clusters.

These images are customised specifically for the EKS service, and are not intended as general OS images. To deploy an EKS cluster, follow the EKS user guide .

Latest changes

20231201: Add AMIs with serial 20231201 to address #2045311

20230927

Add 1.28 amis wth serial 20230926.

20230922

Add 1.23, 1.24, 1.25, 1.26 and 1.27 amis with serial 20230922 to address #1982107 and #2034002

20230804

Add 1.24, 1.25, 1.26 and 1.27 amis with serial 20230804. Add 1.23 amis with serial 20230802.

20230623

Add 1.27 amis with serial 20230622. Add 1.23, 1.24, 1.25 and 1.26 amis with serial 20230623.

20230517

Add 1.26, 1.25, 1.24, 1.23 and 1.22 amis with serial 20230517, to address #2017782 and #2012689

20230424

Add 1.26 amis with serial 20230424.

20230420

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230420.

20230328

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230328.

20230322

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230322.

20230315

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230315, to address #2011408

20230303

Add 1.25, 1.24, 1.23 and 1.22 amis with serial 20230303.

20230224

Add 1.25 amis with serial 20230224.

20230131

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20230131, to address #2003926

20230118

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20230118, to address #2002659

20230114

Add 1.24, 1.23 platform amis with serial 20230114 and 1.22 and 1.21 platform amis with serial 20230113. Those include updated versions for kubelet and kubectl.

20221208

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20221208.1. Those include updated versions for kubelet and kubectl (1.24.7, 1.23.13, 1.22.16 and 1.21.14).

20221206

Add 1.24, 1.23, 1.22 and 1.21 platform amis with serial 20221206.1.

20221111

EKS 1.20 is EOL so drop those AMIs.

20221104

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221104.

20221018

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221018, to address CVE-2022-2602

20221014

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221014.

20221011

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20221011.

20220921

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20220921.

20220913

Add 1.23, 1.22, 1.21 and 1.20 platform amis with serial 20220913.

20220830

EKS 1.19 is EOL so drop those AMIs.

20220822

Add 1.23 amis with serial 20220822.2.

20220810

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220810.

20220718

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220718.

20220713

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220713.

20220623

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220623.

20220617

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220617.

20220522

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220522.

20220518.1

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220518.1. For images using docker, log rotation is setup now ( #1971765 )

20220503

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220503.

20220419.1

Add 1.22, 1.21, 1.20 and 1.19 platform amis with serial 20220419.1. Pause container is now configured via --pod-infra-container-image kubelet option for both dockershim and containerd container runtimes ( #1968830 ).

20220406

Add 1.22 platform AMI with serial 20220406. All AMIs for EKS 1.22 will use containerd as Kubernetes container runtime instead of dockershim. Also EKS 1.18 is EOL so drop it.

20220404

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220404.

20220402

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220402.

20220325

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220325.

20220323

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220323.

20220308

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220308, to address CVE-2022-0847 , CVE-2022-0001 and CVE-2022-23960 .

20220304

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220303.

20220222

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220221.1. The EKS related snaps switched to core20.

20220118

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20220118, for CVE-2022-0185 .

20220110.2/20220111

Add 1.21 and 1.20 platform amis with serial 20220110.2, 1.19 and 1.18 platform amis with serial 20220111, for CVE-2021-4204 .

20220107

Add 1.21, 1.20, 1.19 and 1.8 platform amis with serial 20220107.

20211124

EKS 1.17 is now EOL, removed images from page

20211005

Add 1.21, 1.20, 1.19 and 1.18 platform amis with serial 20211005 and 1.17 platform amis with serial 20211004 for CVE-2021-41103 .

20211001

EKS 1.16 is now EOL, removed images from page

20210823

Add 1.21 platform amis with serial 20210823.

20210823

Add 1.20 platform amis with serial 20210823. This includes updated versions (1.20.7) of kubelet and kubectl.

20210720

Address numerous kernel and systemd CVEs.

20210623/20210623.1

Add 1.20, 1.19 and 1.18 platform amis with serial 20210623 and 1.17 and 1.16 platform amis with serial 20210623.1 for CVE-2021-3600 and CVE-2021-3609.

20210618

Add 1.20 platform amis with serial 20210618. This adds back the CNI plugins. See LP:#1932116

20210609

Add 1.20 platform amis with serial 20210609

20210608

Add 1.17 and 1.18 platform amis with serial 20210608. This includes updated versions (1.17.17 and 1.18.16) of kubelet and kubectl.

20210517

EKS 1.15 is now EOL, removed images from page

20210426

Add 1.15, 1.16 and 1.17 platform amis with serial 20210426. This includes a fix when Metadata version is set to V2 only (token required). See LP:#1925487

20210423

Add 1.18 & 1.19 platform amis with serial 20210423.1. This includes a fix when Metadata version is set to V2 only (token required). See LP:#1925487

20210419

Add 1.19 platform amis with serial 20210419. This includes updated versions (1.19.8) of kubelet and kubectl.

20210416

Updates to EKS AMIs for all Kubernetes versions for CVE-2021-3493, CVE-2021-3492 and CVE-2021-29154.

20210413

Add 1.19 platform amis with serial 20210409. This includes updated versions (1.19.6) of kubelet and kubectl.

20210217

Add 1.19 platform amis with serial 20210211.

20210127

Update all images with fixes for cloud-init key handling issue. See the cloud-init changelog in launchpad for specific details on the fix.

20210108

Update all images with the latest docker.io and containerd from archive

20210107

EKS 1.14 is now EOL, removed images from page

20201211

Updates to EKS AMIs for Kubernetes 1.18 due to RAID 10 kernel regression

20201130

Updates to EKS AMIs for Kubernetes 1.18 for CVE-2020-15257

20201015

Updates to EKS AMIs for Kubernetes 1.18 for CVE-2020-15157

Show worker node images for: Kubernetes

1.28

1.27

1.26

1.25

1.24

1.23

Region	Use this or later image
Africa (Capetown) (af-south-1)	ami-0d41cfc8d5f5dc80b _amd64 ami-01b5f9ecd8500c57f _arm64
Asia Pacific (Hong Kong) (ap-east-1)	ami-06b435263d39cf419 _amd64 ami-0f69c84762b2ea19d _arm64
Asia Pacific (Tokyo) (ap-northeast-1)	ami-01d8bea858a420834 _amd64 ami-0e1101ecbcb7eb511 _arm64
Asia Pacific (Seoul) (ap-northeast-2)	ami-060c6f987fcf773e9 _amd64 ami-0af923699a039680f _arm64
Asia Pacific (Osaka-Local) (ap-northeast-3)	ami-0fb5ab9cedb2bc94d _amd64 ami-03182f49602a826f5 _arm64
Asia Pacific (Mumbai) (ap-south-1)	ami-07e28933a30e6f254 _amd64 ami-0a0446ed6832ea53a _arm64
Asia Pacific (Hyderabad) (ap-south-2)	ami-0054bf0a59ad7be41 _amd64 ami-0a94e3719c96ad230 _arm64
Asia Pacific (Singapore) (ap-southeast-1)	ami-02c1630bce6c0edeb _amd64 ami-0faaab98c9f110d3e _arm64
Asia Pacific (Sydney) (ap-southeast-2)	ami-0fdbf705ff8fe9911 _amd64 ami-0d206bab852c4b659 _arm64
Asia Pacific (Jakarta) (ap-southeast-3)	ami-02394898e774e022f _amd64 ami-02ead029aa6f4ea4b _arm64
Asia Pacific (Melbourne) (ap-southeast-4)	ami-043c9bd4440a4e332 _amd64 ami-0fd6e883b4a03ac56 _arm64
Canada (Central) (ca-central-1)	ami-0e2630ecad490b430 _amd64 ami-01a443f04fca3f4a1 _arm64
EU (Frankfurt) (eu-central-1)	ami-09de7600fa328c9e0 _amd64 ami-0760bfb27f58351fd _arm64
EU (Zurich) (eu-central-2)	ami-0a3fd93c7b44d5b61 _amd64 ami-0f68c0d48eb95dc5a _arm64
EU (Stockholm) (eu-north-1)	ami-04fbb44ea2454341f _amd64 ami-0d635f427dff02a0d _arm64
EU (Milan) (eu-south-1)	ami-0257ee76c054b7b7d _amd64 ami-02dfa2014a495e03d _arm64
EU (Spain) (eu-south-2)	ami-015aa4b2efade99f3 _amd64 ami-0130b62fcc4f38c52 _arm64
EU (Ireland) (eu-west-1)	ami-082013d1889dc7691 _amd64 ami-0bb953c8b95c1f4a0 _arm64
EU (London) (eu-west-2)	ami-0abf4c2b2e84f0749 _amd64 ami-075e531c354acd94b _arm64
EU (Paris) (eu-west-3)	ami-05aa77909fa8f7a1b _amd64 ami-090a6b01960d52d28 _arm64
Middle East (Israel) (il-central-1)	ami-05ff8a1b883422163 _amd64 ami-0234d0cabee465929 _arm64
Middle East (UAE) (me-central-1)	ami-0ee0dc2d412a6a461 _amd64 ami-0ac83caad0a644b39 _arm64
Middle East (Bahrain) (me-south-1)	ami-0a4d7a1d65db4dbb0 _amd64 ami-0de8909ca43e4f23b _arm64
South America (São Paulo) (sa-east-1)	ami-0e37d11e97f9514f6 _amd64 ami-0966fa47d2d6b0c00 _arm64
US East (Virginia) (us-east-1)	ami-0f981dd2928dfd4ea _amd64 ami-02eb48bbd04885430 _arm64
US East (Ohio) (us-east-2)	ami-069fc5c46f1e5b42d _amd64 ami-0a6acb3353d48f94c _arm64
US West (N. California) (us-west-1)	ami-030d5d19dbf71ac55 _amd64 ami-05d41f15d0d95ab73 _arm64
US West (Oregon) (us-west-2)	ami-0c7fcdd59c459a0cb _amd64 ami-0da1ab38bcec5182a _arm64

Kubernetes 1.28

The latest Ubuntu worker node AMIs for Kubernetes 1.28 (N.B. EKS may not be available in some of these regions, check the list of current EKS regions ):

Important: EKS images that support Kubernetes 1.28 use the default amazon-eks-nodegroup.yaml , as specified in the AWS EKS Console Getting Started Guide . To use Ubuntu EKS images with the nodegroup template in Step 3: Launch and Configure Amazon EKS Worker Nodes, click the 'Launch Workers' link for your your region and Kubernetes release version, and enter the Ubuntu AMI ID for your region, listed on this page, into the field labeled 'NodeImageId'.