Two significant security vulnerabilities have emerged in the Linux operating system this week, with Google awarding substantial bounties for their discovery. The more severe of the two, dubbed Januscape, allows untrusted virtual machines to break free from their isolated environments and gain root access to host machines—a nightmare scenario for cloud computing platforms.

The Januscape vulnerability, tracked as CVE-2026-53359, affects the Kernel-based Virtual Machine (KVM) component found in many Linux distributions. What makes this flaw particularly concerning is that it remained undetected for 16 years, silently lurking in code used by countless cloud providers worldwide. The vulnerability works on both AMD and Intel processors, exploiting bugs in the guest-side portion of virtual machines. Security researcher Hyunwoo Kim discovered that an attacker renting a single cloud instance could potentially crash the entire host system, taking down all other tenant virtual machines, or worse—execute code with root privileges to completely compromise the host and every guest running on it.
The technical nature of Januscape involves a use-after-free vulnerability in the shadow MMU emulation process, which handles memory address translation between hosts and hypervisors. Kim has released a proof-of-concept exploit that demonstrates a host crash, whilst keeping a full escape exploit under wraps for the foreseeable future. Google recognised the severity of this discovery with a $250,000 bounty through their kernelCTF programme.
The second vulnerability, named GhostLock and tracked as CVE-2026-43499, presents a different but equally serious threat. This flaw allows users with limited privileges to escalate their access to root level. Discovered by researchers at Nebula Security using AI-assisted scanning, GhostLock had been hiding in the Linux kernel for 15 years. The vulnerability resides in the futex priority-inheritance system, where a cleanup operation executes at the wrong moment, creating another use-after-free condition. With a severity rating of 7.8 out of 10, this flaw earned Nebula Security a $92,337 bounty from Google.
Both vulnerabilities have now been patched in the Linux kernel, and users are strongly advised to verify that their distribution has implemented these critical security updates.
Fuente Original: https://arstechnica.com/security/2026/07/high-severity-guest-vm-escape-is-1-of-2-linux-vulnerabilities-to-surface-this-week/
Artículos relacionados de LaRebelión:
- GhostLock Flaw 15-Year Linux Vulnerability Exposed
- Bad Epoll Flaw Grants Root Access on Linux
- Cyndra AI Deploy AI Employees for Real Business Operations
- Microsoft Unveils Linux Containers Running on Windows
- Vulnerabilidades AI Linux y Malware Informate Ya
Artículo generado mediante LaRebelionBOT
No hay comentarios:
Publicar un comentario