A critical use-after-free vulnerability in the Linux Kernel-based Virtual Machine (KVM) hypervisor, tracked as CVE-2026-53359 and named ‘Januscape’, allows a guest virtual machine to escape to the host on both Intel and AMD x86 systems. Discovered by security researcher Hyunwoo Kim, the flaw resides in the shadow MMU code shared across both CPU architectures and has existed for approximately 16 years, since kernel 2.6.36.
The bug occurs when KVM reuses shadow page tracking entries by memory address alone without verifying the page type, leading to corruption of the host kernel’s shadow-page state. A public proof-of-concept triggers a host panic, while a separate unreleased exploit achieves full host code execution. The attack requires root access inside the guest VM and nested virtualization enabled on the host. It does not require cooperation from QEMU or any userspace VMM.
Affected environments include any x86 KVM host that accepts untrusted guests with nested virtualization. An attacker renting a single such instance can panic the host, taking down all other tenant VMs. On distributions where /dev/kvm is world-writable, the bug can also serve as a local privilege escalation to root.
The fix, a one-line patch by KVM maintainer Paolo Bonzini, adds a role check to the shadow page reuse condition. It was merged into mainline on June 19, 2026, and backported to stable kernels on July 4, 2026. Administrators are urged to patch immediately or disable nested virtualization as a workaround.
CVEs: CVE-2026-53359, CVE-2026-43284, CVE-2026-43500, CVE-2026-46316, CVE-2026-46113, CVE-2026-55200, CVE-2026-46817
Products: KVM, Linux Kernel, QEMU
Events: kvmCTF
Original source: thehackernews.com