Chainguard longtail container CVE burden and rapid remediation trend
Target Trend
Summary
Hide ▲
Show ▼
Chainguard's quarterly telemetry shows 98% of remediated CVEs landed in the longtail outside the top 20 images, concentrating security burden across a broad production portfolio. The measurement set spans 1,800+ container image projects, 290,000 images, and almost half a billion builds from September 1, 2025 through November 30, 2025. It also shows Critical CVEs were fixed in under 20 hours on average, with 63.5% resolved within 24 hours.
Related Happenings
UAT-7290 Linux malware suite targets edge devices with ORB tooling
Malware Activity
First: 09.01.2026 01:39
Last: 09.01.2026 01:39
Sources 1
About this happening:
**UAT-7290** is actively using a **Linux-based malware suite** to compromise **public-facing edge devices** and support **telco cyber-espionage**. The group relies on **one-day ex...
UAT-7290 Linux malware suite targets edge devices with ORB tooling
Malware ActivityAbout this happening: **UAT-7290** is actively using a **Linux-based malware suite** to compromise **public-facing edge devices** and support **telco cyber-espionage**. The group relies on **one-day ex...
Docker expands Hardened Images catalog access with near-zero-CVE subscriptions
Security Tool/Service
First: 08.10.2025 01:09
Last: 08.10.2025 01:09
Sources 1
About this happening:
Docker expanded **Hardened Images** access with a **30-day free trial** and subscription use for all users, making secure container images more accessible to **startups and SMBs**...
Docker expands Hardened Images catalog access with near-zero-CVE subscriptions
Security Tool/ServiceAbout this happening: Docker expanded **Hardened Images** access with a **30-day free trial** and subscription use for all users, making secure container images more accessible to **startups and SMBs**...
Timeline
-
08.01.2026 13:50 2 articles · 4mo ago
Chainguard quarterly report highlights longtail CVE concentration
Technical Analysis UpdateChainguard publishes a quarterly analysis of anonymized product usage and CVE data across 1,800+ container image projects, 10,100 total vulnerability instances, and 154 unique CVEs. The findings show that 98% of remediated CVEs occurred outside the top 20 most popular projects, that 44% of customers run at least one FIPS image in production, and that Critical CVEs were remediated in under 20 hours on average, with the broader pattern spanning September 1, 2025 through November 30, 2025.
Show sources
- The State of Trusted Open Source — thehackernews.com — 08.01.2026 13:50
- The State of Trusted Open Source — thehackernews.com — 08.01.2026 13:50