Skip to content
Research · Jul 9, 2026

Google awards $250K bounty for Linux KVM guest escape vulnerability discovered after 16 years

A previously unknown use-after-free flaw in KVM’s shadow MMU emulation, dubbed Januscape, enables untrusted VMs to escalate to host root. A separate 15-year-old futex flaw, GhostLock, also patched this week.

Trust79
HypeLow hype

1 source · cross-referenced

ShareXLinkedInEmail
TL;DR
  • A 16-year-old KVM vulnerability (CVE-2026-53359) allows untrusted guest VMs to escape and gain root on host systems.
  • Researcher Hyunwoo Kim named the flaw Januscape; Google awarded a $250,000 bounty for its disclosure.
  • A second Linux flaw (CVE-2026-43499), GhostLock, enables limited users to escalate to root; Google paid $92,337 for its discovery.
  • Both flaws are use-after-free issues in long-standing kernel subsystems and have received kernel patches.

A previously unknown vulnerability in the Linux Kernel-based Virtual Machine (KVM) allows untrusted guest virtual machines to break out of isolation and execute code with root privileges on the host, Google’s bug-bounty program confirmed. The flaw, tracked as CVE-2026-53359, resides in KVM’s shadow MMU emulation and has gone undetected for 16 years, according to researcher Hyunwoo Kim, who named it Januscape.

Kim described Januscape as a use-after-free vulnerability that corrupts the host kernel’s shadow page table by triggering guest-side actions alone. An attacker with root access inside a rented cloud VM could exploit the flaw to crash the host kernel (denial of service) or achieve remote code execution on the host and all co-located guest VMs. Kim released a proof-of-concept that crashes the host OS but withheld a full escape exploit, stating it would not be released “until the very distant future.”

The vulnerability affects KVM on both AMD and Intel processors and can be exploited even in cloud environments that deploy custom virtualization stacks, because the flaw is not in QEMU’s memory translation path. Exploitation requires the guest VM user to already have root privileges within the guest.

Google awarded a $250,000 bounty for reporting CVE-2026-53359 through its kernelCTF program. A separate Linux vulnerability, CVE-2026-43499 (GhostLock), also received a patch this week. Discovered by researchers at Nebula Security using the company’s AI-assisted scanner Vega, GhostLock is a use-after-free flaw in the kernel’s futex priority-inheritance machinery that had existed for 15 years.

GhostLock enables users with limited rights to escalate privileges to root by exploiting a cleanup error in the futex subsystem, ultimately tricking the kernel into executing attacker-controlled code as root. The flaw carries a severity rating of 7.8 out of 10 and earned the researchers a $92,337 bounty from Google’s kernelCTF program.

Both vulnerabilities have been patched in the mainline Linux kernel. Linux distributions are expected to propagate the fixes to end users, who should verify their systems have received the updates.

Sources
  1. 01Ars Technica — Technology LabGoogle pays $250K for Linux vulnerability allowing guest VM escapes
Also on Research

Stories may contain errors. Dispatch is assembled with AI assistance and curated by human editors; despite the trust-score filter, mistakes happen. We correct publicly — every article links to its revision history. Nothing here is financial, legal, or medical advice. Verify before relying on any claim.

© 2026 Dispatch. No ads. No sponsorships. No paid placement. Reader-supported via Ko-fi.

Built by a person who cares about honest AI news.