
16-Year-Old Linux KVM Vulnerability Allows Malicious Guests to Corrupt Host Kernel Memory
A newly disclosed Januscape (CVE-2026-53359), a 16-year-old use-after-free vulnerability in Linux KVM’s shadow MMU that lets a malicious guest corrupt host kernel memory using guest-side actions alone The flaw affects the shadow MMU code shared by both Intel VMX and AMD SVM implementations of x86 KVM, making it the first publicly known guest-to-host exploit that […]
The post 16-Year-Old Linux KVM Vulnerability Allows Malicious Guests to Corrupt Host Kernel Memory appeared first on Cyber Security News.