Dos fallos de 15 años en el kernel de Linux exigen parches urgentes

23 sources
  • GhostLock (CVE-2026-43499) permite a cualquier usuario local obtener privilegios de root en segundos mediante un uso después de liberación (use-after-free) en el código futex de Linux presente desde 2011, con código de explotación funcional ya público.
  • Januscape (CVE-2026-53359) permite el escape de máquina virtual a host tanto en sistemas Intel como AMD, amenazando entornos de nube multiinquilino, según el investigador Hyunwoo Kim.
  • Red Hat lanzó un kernel parcheado para RHEL 9 el 8 de julio, mientras que los parches de Ubuntu para varias versiones LTS siguen en proceso.
Sources (23)
  1. 1 15-Year-Old GhostLock Flaw Enables Root and Container ... thehackernews.com
  2. 2 15-Year-Old Linux Kernel Vulnerability Allows Full System ... www.privacyguides.org
  3. 3 Linux Kernel Vulnerability Allows VM Escape on Intel and ... www.securityweek.com
  4. 4 CVE-2026-53359: Januscape Linux KVM Flaw Enables ... thecyberexpress.com
  5. 5 RHSA-2026:36645 - Security Advisory access.redhat.com
  6. 6 GhostLock Flaw Gives Any Linux User Root Access www.secure.com
  7. 7 GhostLock: 15-year-old Linux kernel flaw enables root ... secarma.com
  8. 8 Nebula Security publishes GhostLock exploit for 15-year ... www.reddit.com
  9. 9 GhostLock (CVE-2026-43499) Local Root Exploit: Kernel ... blog.cloudlinux.com
  10. 10 RHSB-2026-010 Locking Subsystem Privilege Escalation access.redhat.com
  11. 11 Critical Linux KVM vulnerability exposes cloud servers to ... cybernews.com
  12. 12 16-year-old KVM flaw allows attackers to escape VMs and take over Linux servers www.csoonline.com
  13. 13 Januscape KVM Bug Is Actually Two Flaws, Not One securitypointbreak.com
  14. 14 Januscape - The KVM vulnerability that slept for 16 years in ... korben.info
  15. 15 Januscape (CVE-2026-53359): Mitigation and Kernel ... blog.cloudlinux.com
  16. 16 CVE-2026-53359: Januscape turns KVM shadow-page ... corgea.com
  17. 17 Security Alerts - Vulnerability in Linux Kernel www.govcert.gov.hk
  18. 18 Linux Kernel Privilege Escalation to Root Vulnerability - "pedit ... kb.wisc.edu
  19. 19 Two kernel vulnerabilities, Januscape and Bad Epoll almalinux.org
  20. 20 The Hacker - 🛑 A newly found 15-year-old #Linux kernel ... www.facebook.com
  21. 21 CVE-2026-53359: Our OpenStack KVM Security Response vexxhost.com
  22. 22 15-Year-Old GhostLock Linux Kernel Vulnerability Enables ... gbhackers.com
  23. 23 Linux bug dormant for 16 years can cause a VM escape www.scworld.com

Deja un comentario

Your email address will not be published. Required fields are marked *