CVE-2026-30892
CVE-2026-30892 (crun) : Affected are crun versions 1.19–1.26 where the --user option parsing misinterprets the value 1 as UID 0, GID 0, allowing a process to run with elevated privileges. The issue is fixed in crun 1.27. Impact is privilege escalation on local/host context; exploitation is local ...