Find notable cyber news and cases, enriched with sources, timelines, and signals.

Linux KVM shadow MMU use-after-free security flaw (CVE-2026-53359)

Vulnerability
First reported
Last updated
Happening score
H score 34
1 unique sources, 1 articles

Summary

Hide ▲

CVE-2026-53359 is a Linux KVM shadow MMU use-after-free that a guest VM can trigger to corrupt host kernel shadow-page state, creating host panic and potential code execution risk. The flaw affects x86 KVM hosts with nested virtualization, and the vulnerable code has existed since August 2010. A fix is available in mainline and stable kernels, including the commit merged on June 19, 2026 and stable releases shipped on July 4, 2026. Administrators who cannot patch immediately can disable nested virtualization to block the attack path for untrusted guests.

Timeline

  1. 06.07.2026 20:37 1 articles · 3d ago

    Hyunwoo Kim discloses Januscape guest-to-host KVM flaw

    Initial Disclosure

    Hyunwoo Kim disclosed Januscape (CVE-2026-53359), a Linux KVM shadow MMU use-after-free that a guest VM can trigger on Intel and AMD x86 systems to corrupt host kernel state. The public proof-of-concept panics the host, Kim said a separate unreleased exploit can reach full host code execution, and the bug was used as a zero-day submission in Google's kvmCTF.

    Show sources