New Januscape Linux Flaw Allows VM Escape on Intel, AMD Devices
7 Articles
7 Articles
A critical failure in Linux KVM has remained hidden for approximately 16 years and now draws the attention of system administrators, security professionals and cloud providers around the world. Januscape's baptized (CVE-2026-53359), vulnerability can allow a virtual machine (guest) to overcome hypervisor-imposed isolation and directly interfere with the host system (host), one of the most serious scenarios in the virtualization area. The discove…
Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems
The 16-year-old Januscape flaw affects Linux's KVM hypervisor, allowing attackers to escape virtual machines and potentially execute code on the underlying host. The post Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems appeared first on SecurityWeek.
For 16 years, there has been a huge flaw in the heart of everything that manages virtualization under Linux and no one has noticed it, until Hyunwoo Kim, a security researcher known as @v4bel lands. The latter has just found a use-after-free in KVM's MMU shadow, a piece of code that KVM shares between Intel and AMD processors. He named his find Januscape (CVE-2026-53359), and believe me, the scenario has enough to give cold sweats to any host...…
16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public proof-of-concept panics the host; the researcher claims that a separate, unreleased exploit
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium



