Linux KVM Hypervisor Flaw Allows Guest VM to Escape Host on x86 Systems
A vulnerability in the Linux KVM hypervisor, dubbed 'Januscape,' allows a guest virtual machine to potentially corrupt the host kernel's state, potentially leading to full host code execution. This flaw affects both Intel and AMD x86 systems and poses a significant threat to multi-tenant cloud environments with nested virtualization enabled.
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it.
Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public proof-of-concept panics the host; the researcher claims that a separate, unreleased exploit
*** END OF TRANSMISSION ***