releases.shpreview
HashiCorp/Nomad

Nomad

Mon
Wed
Fri
JulAugSepOctNovDecJanFebMarAprMayJunJul
Less
More
Releases16Avg5/moVersionsv2.0.4
ent-changelog-1.11.8

Fixed two Docker security issues: enforcement of allowed_modes or allow_privileged requirement for host namespace modes (CVE-2026-14891), and a symlink bypass of the volumes.enabled=false plugin configuration (CVE-2026-14896). Also fixed a cross-namespace host volume deletion bug and several scheduler issues affecting sticky volumes and feasibility checking.

Read more →
ent-changelog-1.10.14

Fixed two Docker security issues: CVE-2026-14891 enforces allowed_modes or allow_privileged requirement for host namespace modes, and CVE-2026-14896 closes a symlink bypass for volumes.enabled=false. Also fixed a cross-namespace host volume deletion vulnerability and multiple scheduler and UI bugs including a ModifyIndex collision that omitted jobs from the jobs page.

Read more →
v2.0.4

Fixed a security bug where users with host-volume-delete permission in one namespace could delete claims from another namespace. Also fixed scheduler issues with sticky host volumes, a client panic after allocation garbage collection, and UI rendering of jobs with matching ModifyIndex values.

Read more →
ent-changelog-1.11.5

Fixed two security vulnerabilities: prevented unintended code execution outside the plugin directory in dynamic host volumes (CVE-2026-7474) and protected the logging FIFO from symlink swap attacks (CVE-2026-6959). Allocation logs directory is now bind-mounted read-only for task drivers with filesystem isolation support, and plugin clients no longer leak file descriptors on agent restart.

Read more →
ent-changelog-1.10.11

Fixed two security vulnerabilities: logging FIFOs are now protected from symlink swap attacks (CVE-2026-6959), and dynamic host volumes prevent unintended code execution outside the plugin directory (CVE-2026-7474). The allocation logs directory is now bind-mounted read-only for task drivers with filesystem isolation, and a file descriptor leak in plugin clients on agent restart is fixed.

Read more →
ent-changelog-1.11.4

FEATURES:

  • config: add nonproduction config option for server, license, and reporting config [GH-27646]
  • core (Enterprise): Enable parsing and reporting with IBM PAO licenses

SECURITY:

  • build: upgrade Go to 1.26.2…
Read more →
ent-changelog-1.10.10

FEATURES:

  • core (Enterprise): Enable parsing and reporting with IBM PAO licenses

SECURITY:

  • build: upgrade Go to 1.26.2 [GH-27831]
  • ui: Increased the client-side generated OIDC nonce entropy to 256-bit.…
Read more →
ent-changelog-1.10.9

SECURITY:

  • security: Upgrade tooling to Go 1.25.8 [GH-27653]

IMPROVEMENTS:

  • consul (enterprise): adds ability to specify cluster specific consul tokens with environment variables…
Read more →
ent-changelog-1.8.21

SECURITY:

  • security: Upgrade tooling to Go 1.25.8 [GH-27653]

BUG FIXES:

  • acl: Fixed a bug where a bearer-token authenticated request could panic the handler for checking claims…
Read more →
Last Checked
1h ago
Latest
ent-changelog-1.11.8
Tracking since Nov 16, 2023