High-Severity Linux Vulnerabilities Patched – Open Source For You
High-Severity Linux Vulnerabilities Patched – Open Source For You
https://www.opensourceforu.com/2026/07/high-severity-linux-vulnerabilities-patched/
Publish Date: 2026-07-09 04:03:00
Source Domain: www.opensourceforu.com
Credit: Getty Images
Two high-severity Linux kernel vulnerabilities could allow virtual machine escapes and privilege escalation before newly released patches close the security gaps.
Two high-severity vulnerabilities have been disclosed in the Linux kernel, including one that allows virtual machines to escape from the guest environment to the host and obtain root privileges. The vulnerability is tracked as CVE-2026-53359 and has been awarded a US$250,000 bug bounty by Google for the disclosure. Google also awarded a US$92,337 bug bounty for another Linux vulnerability, tracked as CVE-2026-43499.
The first vulnerability has been called Januscape and affects the KVM hypervisor that is used in most of the Linux distributions. It resides on the guest-side of KVM and allows an attacker with root privileges in a guest virtual machine (VM) to run code on the host machine or disrupt other VMs running on the same physical host.
Hyunwoo Kim, the security researcher who discovered Januscape, wrote, “With guest-side actions alone, an attacker can compromise the host that runs their VM. For example, an attacker who has rented just a single instance on a public cloud could panic the host kernel to take down every other tenant VM on the same physical machine (DoS), or run code with root privilege on the host to take over the host and all the guests on it (RCE).”
The other security issue called, GhostLock, is a privilege escalation vulnerability that resides in the Linux kernel’s futex priority-inheritance feature. It allows users with limited privileges to gain root access and remained undiscovered for 15 years.
Matt Lucas, researcher and founder of RedEye Security, explained, “The flaw lives in the kernel’s futex priority-inheritance machinery… The kernel is left holding a pointer to memory it has already freed and reused. Trusting that stale pointer is the entire bug: a classic use-after-free.”
Both vulnerabilities have been patched in…