Unverified Commit d345ddaf authored by Etienne Bruines's avatar Etienne Bruines
Browse files

nomad_1_5: 1.5.6 -> 1.5.7 

https://github.com/hashicorp/nomad/releases/tag/v1.5.7

CVE notes from upstream:

acl: Fixed a bug where a namespace ACL policy without label was applied to an unexpected namespace. CVE-2023-3072 [https://github.com/hashicorp/nomad/issues/17908]
search: Fixed a bug where ACL did not filter plugin and variable names in search endpoint. CVE-2023-3300 [https://github.com/hashicorp/nomad/issues/17906]
sentinel (Enterprise): Fixed a bug where ACL tokens could be exfiltrated via Sentinel logs CVE-2023-3299 [https://github.com/hashicorp/nomad/issues/17907]
parent 0665253b

pkgs/applications/networking/cluster/nomad/default.nix

+3 −3
Original line number Diff line number Diff line
@@ -77,9 +77,9 @@ rec { 


  nomad_1_5 = generic {

    buildGoModule = buildGo120Module;

    version = "1.5.6";

    sha256 = "sha256-eFzGaTJ9BcK5F10lkTKB3sNaGZsmZ0BbPZI6kT5ZUpo=";

    vendorSha256 = "sha256-tOUQr44wUhhCccvj4dCI7fvLMrKaEX7xY7035Q3wU3M=";

    version = "1.5.7";

    sha256 = "sha256-IafIC1YVbJFQjC04S2rqjDgB83uSFpMajgsKxfFc/H8=";

    vendorSha256 = "sha256-y3WiQuoQn6SdwTgtPWuB6EBtsJC+YleQPzownZQNkno=";

    passthru.tests.nomad = nixosTests.nomad;

    preCheck = ''

      export PATH="$PATH:/build/go/bin"