HashiCorp Nomad and Nomad Enterprise 1.2.15 up to 1.3.8, and 1.4.3 jobs using a maliciously compressed artifact stanza source can cause excessive disk usage. Fixed in 1.2.16, 1.3.9, and 1.4.4.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| github.com/hashicorp/nomad(Go) | 1.2.15 | 1.2.16 | N/A |
| github.com/hashicorp/nomad(Go) | 1.3.0 | 1.3.9 | N/A |
| github.com/hashicorp/nomad(Go) | 1.4.0 | 1.4.4 | N/A |
CVSS Metrics
