falco-no-driver: update advisory (#27843)

dnegreira · web-flow · commit 5bde25debde3 · 2025-12-11T01:17:37.000Z
Update advisory for CVE-2025-66506 falco-no-driver itself does not contain any code that is vulnerable to this CVE; however it pulls in libcontainer plugin from https://github.com/falcosecurity/plugins/tree/main/plugins/container which is vulnerable. The upstream maintainers will need to update to a new version of >= github.com/sigstore/fulcio and pull that in to fix the CVE. See also falcosecurity/plugins#1056 Signed-off-by: David Negreira <david.negreira@chainguard.dev>
diff --git a/falco-no-driver.advisories.yaml b/falco-no-driver.advisories.yaml
@@ -145,6 +145,13 @@ advisories:
             componentType: go-module
             componentLocation: /usr/share/falco/plugins/libcontainer.so
             scanner: grype
+      - timestamp: 2025-12-10T14:58:23Z
+        type: pending-upstream-fix
+        data:
+          note: |
+            falco-no-driver itself does not contain any code that is vulnerable to this CVE; however it pulls in libcontainer plugin from https://github.com/falcosecurity/plugins/tree/main/plugins/container which is vulnerable.
+            The upstream maintainers will need to update to a new version of >= github.com/sigstore/fulcio and pull that in to fix the CVE.
+            See also https://github.com/falcosecurity/plugins/issues/1056
 
   - id: CGA-6rcj-3749-p5hw
     aliases:
