https://vulnerability.circl.lu/sightings/feed 2026-06-20T14:19:04.492463+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/753bd682-4616-4ca6-bcd1-86fa06630c36/export 2026-06-20T14:19:04.996346+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "753bd682-4616-4ca6-bcd1-86fa06630c36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44517", "type": "seen", "source": "https://bsky.app/profile/mfahlandt.bsky.social/post/3modarvnx3m26", "content": "\ud83d\udee1\ufe0f LWCN 2026, Week 25 highlights:\n* Podman v5.8.3 addresses CVE-2026-44517 (Dockerfile build file inclusion).\n* OPA v1.17.1 fixes Go stdlib CVEs GO-2026-5039, GO-2026-5037.\n* Dapr v1.18.0 introduces workflow history signing and verification.\nFull breakdown:\n\nhttps://lwcn.dev/newsletter/2026-week-25/", "creation_timestamp": "2026-06-15T12:08:38.544020Z"} 2026-06-15T12:08:38.544020+00:00 https://vulnerability.circl.lu/sighting/4259dfd2-17eb-404f-bf5a-5479f02dea2c/export 2026-06-20T14:19:04.991903+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "4259dfd2-17eb-404f-bf5a-5479f02dea2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44517", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moe7usgnrr2l", "content": "Podman 5.8.3 patches CVE-2026-44517, where ADD or COPY against a crafted Git repo or tar archive could escape the build context and grab files it should not. Buildah 1.43.2 is bundled. Building images from third-party Dockerfiles, where does your trust boundary actually sit?\n#containers", "creation_timestamp": "2026-06-15T21:25:02.098068Z"} 2026-06-15T21:25:02.098068+00:00