16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems 11.9%
The Hacker News - By Swati Khandelwal - 7/6/2026, 5:37 PM
Hasty Generalization 18% - Availability Heuristic 13.6% - Negativity Bias 12.2%
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public proof-of-concept panics the host; the... more