PT-2026-49168

runc shipped 1.4.3, 1.3.6, and 1.5.0-rc.3 on June 13, all fixing CVE-2026-41579: a container image with a /dev symlink could get limited write access to the host filesystem. Low severity, but it sits in rootfs setup. How fast do low-sev runtime CVEs move through your pipeline?...