Candidate: CVE-2021-3283
PublicDate: 2021-02-01 16:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3283
 https://discuss.hashicorp.com/t/hcsec-2021-01-nomad-s-exec-and-java-task-drivers-did-not-isolate-processes/20332
Description:
 HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task
 drivers can access processes associated with other tasks on the same node.
 Fixed in 0.12.10, and 1.0.3.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N [7.5 HIGH]


Patches_nomad:
upstream_nomad: needs-triage
precise/esm_nomad: DNE
trusty_nomad: ignored (out of standard support)
trusty/esm_nomad: DNE
xenial_nomad: DNE
bionic_nomad: needs-triage
focal_nomad: needs-triage
groovy_nomad: ignored (reached end-of-life)
hirsute_nomad: ignored (reached end-of-life)
impish_nomad: DNE
jammy_nomad: DNE
devel_nomad: DNE