Back Issues This Week → Calendar → Current Issue → Popular →

All issuesVolume 340, Issue 2IT NewsLinux

High-Severity Linux Vulnerabilities Patched

Open Source For You, Thursday, July 9th, 2026

Two critical Linux kernel flaws, Januscape (KVM) and GhostLock (futex), have been disclosed and patched.

Two critical Linux kernel vulnerabilities were disclosed and patched. Januscape (CVE-2026-53359) affects the KVM hypervisor, allowing attackers with guest root access to compromise host machines or disrupt other VMs, earning a $250,000 Google bug bounty.

GhostLock (CVE-2026-43499) is a privilege-escalation flaw in the kernel's futex priority-inheritance feature that went undetected for 15 years and grants limited users root access.

Both issues have been resolved. Linux administrators are urged to apply the latest kernel updates immediately.

more →  ·  More from Linux →