SPIN Unprocessed
Source The Hacker News feeds.feedburner.com Media
July 6, 2026 ai_technology cybersecurity

16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems

View original on thehackernews.com

Overview

A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public proof-of-concept panics the host; the researcher claims that a separate, unreleased exploit

SpinGraph analysis pending — check back after processing.

Ask AI about this story

Opens with the SpinGraph .md URL and structured context — one click, prompt included.

More from The Hacker News

View all →

Markdown (.md) · JSON-LD schema (.json) · Machine-readable for AI & GEO