https://vulnerability.circl.lu/sightings/feed 2026-06-19T20:07:10.356344+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f06a726f-fd25-4485-8acc-a013714ab5db/export 2026-06-19T20:07:10.731162+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f06a726f-fd25-4485-8acc-a013714ab5db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41579", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mobutr46go2p", "content": "runc released 1.4.3, 1.3.6, and 1.5.0-rc.3 on June 13 to fix CVE-2026-41579, where a malicious image with a /dev symlink could gain limited host filesystem writes. The releases also reuse one tmpfs instance when masking dirs, cutting overhead on Kubernetes nodes. Patching yet?\n#containers", "creation_timestamp": "2026-06-14T23:02:16.801049Z"} 2026-06-14T23:02:16.801049+00:00 https://vulnerability.circl.lu/sighting/42824932-308b-48ea-9c48-fdc1da040487/export 2026-06-19T20:07:10.729163+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "42824932-308b-48ea-9c48-fdc1da040487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41579", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mol7lttetj2p", "content": "runc 1.3.6 is out, backporting a fix for CVE-2026-41579: a /dev symlink flaw that let a malicious image gain limited write access to the host filesystem. Container runtimes are the trust boundary, so this one matters. How quickly do runtime CVEs reach your production nodes?\n\n#security", "creation_timestamp": "2026-06-18T16:08:39.340363Z"} 2026-06-18T16:08:39.340363+00:00