Another Linux memory CVE (GhostLock) allows root and escape from containers. This may be the last Linux CVE you need to worry about. How I used the initial launch of Fable 5 to build a Kubernetes VM image without Linux, systemd, or any C whatsoever by extending the Rust-based Asterinas kernel.
boeroboy•1h ago