v1.7.16 (Enterprise)

SECURITY:

• api: sanitize the SignedIdentities in allocations to prevent privilege escalation through unredacted workload identity token impersonation associated with ACL policies. [GH-24683]
• security: Added more host environment variables to the default deny list for tasks [GH-24540]
• security: Explicitly set 'Content-Type' header to mitigate XSS vulnerability [GH-24489]
• security: add executeTemplate to default template function_denylist [GH-24541]

BUG FIXES:

• agent: Fixed a bug where retry_join gave up after a single failure, rather than retrying until max attempts had been reached [GH-24561]
• cli: Ensure the operator autopilot health command only outputs JSON when the json flag is supplied [GH-24655]
• consul: Fixed a bug where failures when syncing Consul checks could panic the Nomad agent [GH-24513]
• consul: Fixed a bug where non-root Nomad agents could not recreate a task's Consul token on task restart [GH-24410]
• csi: Fixed a bug where drivers that emit multiple topology segments would cause placements to fail [GH-24522]
• csi: Removed redundant namespace output from volume status command [GH-24432]
• discovery: Fixed a bug where IPv6 addresses would not be accepted from cloud autojoin [GH-24649]
• drivers: fix executor leak when drivers error starting tasks [GH-24495]
• executor: validate executor on reattach to avoid possibility of killing non-Nomad processes [GH-24538]
• fix: handles consul template re-renders on client restart [GH-24399]
• networking: use a tmpfs location for the state of CNI IPAM plugin used by bridge mode, to fix a bug where allocations would fail to restore after host reboot [GH-24650]
• scheduler: take all assigned cpu cores into account instead of only those part of the largest lifecycle [GH-24304]
• vault: Fixed a bug where expired secret leases were treated as non-fatal and retried [GH-24409]
• windows: Restore process accounting logic from Nomad 1.6.x [GH-24494]

v1.9.4

1.9.4 (December 18, 2024)

SECURITY:

• api: sanitize the SignedIdentities in allocations to prevent privilege escalation through unredacted workload identity token impersonation associated with ACL policies. [GH-24683]
• security: Added more host environment variables to the default deny list for tasks [GH-24540]
• security: Explicitly set 'Content-Type' header to mitigate XSS vulnerability [GH-24489]
• security: add executeTemplate to default template function_denylist [GH-24541]

IMPROVEMENTS:

• actions: Nomad Actions names now accept a wider range of names [GH-24642]
• api: Sanitise hcl variables before storage on JobSubmission [GH-24423]
• client: Emit telemetry from prerun and prestart hooks for monitoring and alerting [GH-24556]
• cni: Add Nomad specific workload information to CNI_ARGS [GH-24319]
• core: add the possibility to scale system jobs between 0 and 1 [GH-24363]
• ui: Add an Edit From Version button as an option when reverting from an older job version [GH-24168]
• ui: Adds metadata tables to Task Group and Task pages [GH-24594]

BUG FIXES:

• agent: Fixed a bug where retry_join gave up after a single failure, rather than retrying until max attempts had been reached [GH-24561]
• api: Fixed a bug where alloc exec/logs/fs APIs would return errors for non-global regions [GH-24644]
• cli: Ensure the operator autopilot health command only outputs JSON when the json flag is supplied [GH-24655]
• consul: Fixed a bug where failures when syncing Consul checks could panic the Nomad agent [GH-24513]
• consul: Fixed a bug where non-root Nomad agents could not recreate a task's Consul token on task restart [GH-24410]
• csi: Fixed a bug where drivers that emit multiple topology segments would cause placements to fail [GH-24522]
• csi: Removed redundant namespace output from volume status command [GH-24432]
• discovery: Fixed a bug where IPv6 addresses would not be accepted from cloud autojoin [GH-24649]
• drivers: fix executor leak when drivers error starting tasks [GH-24495]
• executor: validate executor on reattach to avoid possibility of killing non-Nomad processes [GH-24538]
• keyring: Fixed a bug when decrypting aead with an empty RSA block on state upserts [GH-24442]
• networking: use a tmpfs location for the state of CNI IPAM plugin used by bridge mode, to fix a bug where allocations would fail to restore after host reboot [GH-24650]
• scheduler: Fix bug where forced garbage collection does not ignore GC thresholds [GH-24456]
• scheduler: take all assigned cpu cores into account instead of only those part of the largest lifecycle [GH-24304]
• ui: Fix a bug where namespaced jobs wouldn't show diffs on the versions page [GH-24466]
• ui: Fix an issue where 2 parent jobs would see the others dispatches if it were otherwise empty [GH-24668]
• ui: Fix an issue where cmd+click or ctrl+click would double-open a var [GH-24316]
• ui: Fix an issue where system jobs with garbage-collected allocations were showing as Scaled Down [GH-24620]
• ui: Fix an issue where volumes weren't navigable [GH-24542]
• vault: Fixed a bug where expired secret leases were treated as non-fatal and retried [GH-24409]
• windows: Restore process accounting logic from Nomad 1.6.x [GH-24494]

v1.8.8 (Enterprise)

SECURITY:

• api: sanitize the SignedIdentities in allocations to prevent privilege escalation through unredacted workload identity token impersonation associated with ACL policies. [GH-24683]
• security: Added more host environment variables to the default deny list for tasks [GH-24540]
• security: Explicitly set 'Content-Type' header to mitigate XSS vulnerability [GH-24489]
• security: add executeTemplate to default template function_denylist [GH-24541]

BUG FIXES:

• agent: Fixed a bug where retry_join gave up after a single failure, rather than retrying until max attempts had been reached [GH-24561]
• api: Fixed a bug where alloc exec/logs/fs APIs would return errors for non-global regions [GH-24644]
• cli: Ensure the operator autopilot health command only outputs JSON when the json flag is supplied [GH-24655]
• consul: Fixed a bug where failures when syncing Consul checks could panic the Nomad agent [GH-24513]
• consul: Fixed a bug where non-root Nomad agents could not recreate a task's Consul token on task restart [GH-24410]
• csi: Fixed a bug where drivers that emit multiple topology segments would cause placements to fail [GH-24522]
• csi: Removed redundant namespace output from volume status command [GH-24432]
• discovery: Fixed a bug where IPv6 addresses would not be accepted from cloud autojoin [GH-24649]
• drivers: fix executor leak when drivers error starting tasks [GH-24495]
• executor: validate executor on reattach to avoid possibility of killing non-Nomad processes [GH-24538]
• fix: handles consul template re-renders on client restart [GH-24399]
• networking: use a tmpfs location for the state of CNI IPAM plugin used by bridge mode, to fix a bug where allocations would fail to restore after host reboot [GH-24650]
• scheduler: take all assigned cpu cores into account instead of only those part of the largest lifecycle [GH-24304]
• vault: Fixed a bug where expired secret leases were treated as non-fatal and retried [GH-24409]

v1.9.3

1.9.3 (November 11, 2024)

BUG FIXES:

• fix: handles consul template re-renders on client restart [GH-24399]
• fsm: Fix bug in snapshot restore that could partially wipe state [GH-24412]

v1.9.2

WARNING

Nomad 1.9.2 and Nomad 1.9.2 Enterprise shipped with a critical bug in state store restoration. See #24411. Users should not upgrade to Nomad 1.9.2 or Nomad 1.9.2 Enterprise. A replacement release will ship shortly.

1.9.2 (November 08, 2024)

SECURITY:

• csi: Fixed a bug where a user with csi-write-volume permissions to one namespace can create volumes in another namespace (CVE-2024-10975) [GH-24396]

IMPROVEMENTS:

• api: new parameterized dispatch endpoint sends raw HTTP request body as Payload [GH-24312]
• connect: Able to accept go-sockaddr address for consul grpc address [GH-24280]
• consul: add support for service weight [GH-24186]
• drivers: Add work_dir config to exec/rawexec/java drivers for setting the working directory of processes in a task [GH-24249]
• drivers: Move executor process out of task cgroup after task starts on cgroups v1 [GH-24340]
• drivers: add posibility to restrict user and group for exec and rawexec [GH-20073]
• fingerprint gce: fingerprint preemptibility [GH-24169]
• getter: Added option to chown artifact(s) to task user [GH-24157]
• ui: Indicates prestart/poststart tasks by running/failed/pending status [GH-24133]
• ui: Show region in header when only one region exists, and set it immediately upon logging in with a token [GH-24320]
• ui: When your token expires, upon signing back in, redirect to your original route [GH-24374]

BUG FIXES:

• cli: Corrected an ordering mistake in job tag unset help text [GH-24272]
• connect: add validation to ensure that connect native services specify a port [GH-24329]
• deps: Fixed a bug where restarting Nomad could cause an unrelated process with the same PID as a failed executor to be killed [GH-24265]
• keyring: Fixed a panic on server startup when decrypting AEAD key data with empty RSA block [GH-24383]
• scheduler: fixed a bug where resource calculation did not account correctly for poststart tasks [GH-24297]
• state: Fixed setting GC threshold to more than 72hrs being ignored [GH-24112]

v1.8.7 (Enterprise)

1.8.7 Enterprise (November 8, 2024)

SECURITY:

• csi: Fixed a bug where a user with csi-write-volume permissions to one namespace can create volumes in another namespace (CVE-2024-10975) [GH-24396]

BUG FIXES:

• connect: add validation to ensure that connect native services specify a port [GH-24329]
• keyring: Fixed a panic on server startup when decrypting AEAD key data with empty RSA block [GH-24383]
• scheduler: fixed a bug where resource calculation did not account correctly for poststart tasks [GH-24297]

v1.7.15 (Enterprise)

1.7.15 (November 8, 2024)

SECURITY:

• csi: Fixed a bug where a user with csi-write-volume permissions to one namespace can create volumes in another namespace (CVE-2024-10975) [GH-24396]

BUG FIXES:

• connect: add validation to ensure that connect native services specify a port [GH-24329]
• deps: Fixed a bug where restarting Nomad could cause an unrelated process with the same PID as a failed executor to be killed [GH-24265]
• scheduler: fixed a bug where resource calculation did not account correctly for poststart tasks [GH-24297]

v1.8.6 (Enterprise)

IMPROVEMENTS:

• cli: Added synopsis for operator root and operator gossip command [GH-23671]

BUG FIXES:

• consul: Fixed a bug where broken Consul ACL tokens could block registration and deregistration of services and checks [GH-24166]
• consul: Fixed a bug where service deregistration could fail because Consul ACL tokens were revoked during allocation GC [GH-24166]
• deps: Fixed a bug where restarting Nomad could cause an unrelated process with the same PID as a failed executor to be killed [GH-24265]
• scheduler: fixes reconnecting allocations not getting picked correctly when replacements failed [GH-24165]
• windows: Fixed a bug where a crashed executor would orphan task processes [GH-24214]

v1.7.14 (Enterprise)

IMPROVEMENTS:

• cli: Added synopsis for operator root and operator gossip command [GH-23671]

BUG FIXES:

• consul: Fixed a bug where broken Consul ACL tokens could block registration and deregistration of services and checks [GH-24166]
• consul: Fixed a bug where service deregistration could fail because Consul ACL tokens were revoked during allocation GC [GH-24166]
• plugins: Fix panic on systems that don't support NUMA [GH-23399]
• scheduler: fixes reconnecting allocations not getting picked correctly when replacements failed [GH-24165]
• windows: Fixed a bug where a crashed executor would orphan task processes [GH-24214]

v1.9.1

1.9.1 (October 21, 2024)

IMPROVEMENTS:

• cli: Added synopsis for operator root and operator gossip command [GH-23671]
• cli: Updated example job specifications in nomad job init [GH-24232]

BUG FIXES:

• consul: Fixed a bug where broken Consul ACL tokens could block registration and deregistration of services and checks [GH-24166]
• consul: Fixed a bug where service deregistration could fail because Consul ACL tokens were revoked during allocation GC [GH-24166]
• docker: Always negotiate API version when initializing clients [GH-24237]
• docker: Fix incorrect auth parsing for private registries [GH-24215]
• docker: Fixed a bug where alloc exec could leak a goroutine [GH-24244]
• docker: Fixed a bug where alloc exec with stdin would hang [GH-24202]
• docker: Fixed a bug where task CPU stats were reported incorrectly [GH-24229]
• heartbeat: Fixed a bug where failed nodes would not be marked down [GH-24241]
• scheduler: fixes reconnecting allocations not getting picked correctly when replacements failed [GH-24165]
• ui: Fix an issue where a dropdown on the variables page would appear underneath table headers [GH-24162]
• ui: Put a max-width on token name so it doesn't collide with the search box in the top nav [GH-24240]
• windows: Fixed a bug where a crashed executor would orphan task processes [GH-24214]