HashiCorp Nomad and Nomad Enterprise 1.1.1 through 1.1.5 allowed authenticated users with job submission capabilities to cause denial of service by submitting incomplete job specifications with a Consul mesh gateway and host networking mode. Fixed in 1.1.6.
Upstream PR: https://github.com/hashicorp/nomad/pull/11257
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):