Affected by GO-2022-1105 and 8 other vulnerabilities

GO-2022-1105: HashiCorp Nomad vulnerable to non-sensitive metadata exposure in github.com/hashicorp/nomad

GO-2022-1106: HashiCorp Nomad vulnerable to Insufficient Session Expiration in github.com/hashicorp/nomad

GO-2023-1581: Uncontrolled Resource Consumption in Hashicorp Nomad in github.com/hashicorp/nomad

GO-2023-1899: Hashicorp Nomad ACLs Cannot Deny Access to Workload’s Own Variables in github.com/hashicorp/nomad

GO-2024-2669: API token secret ID leak to Sentinel in github.com/hashicorp/nomad

GO-2024-2670: ACL security vulnerability in github.com/hashicorp/nomad

GO-2024-3073: Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking in github.com/hashicorp/nomad

GO-2024-3262: Hashicorp Nomad Incorrect Authorization vulnerability in github.com/hashicorp/nomad

GO-2024-3354: Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad

users

package

v1.4.0 Latest Latest Go to latest Published: Oct 4, 2022 License: MPL-2.0 Imports: 2 Imported by: 4

Details

Rendered for

This section is empty.

This section is empty.

func Current() (*user.User, error)

Current returns the current user, acquired while holding a global process lock.

func Lookup(username string) (*user.User, error)

Lookup username while holding a global process lock.

func LookupGroupId(gid string) (*user.Group, error)

LookupGroupId while holding a global process lock.

func Nobody() (*user.User, error)

Nobody returns User data for the "nobody" user on the system, bypassing the locking / file read / NSS lookup.

This section is empty.