Statement regarding Januscape (CVE-2026-53359)
السبت, يوليو/السابع 11, 2026
Please be advised that we are aware of the potential KVM escape vulnerability, Januscape (CVE-2026-53359), and have evaluated its possible impact on our infrastructure since 6 July.
As nested KVM support is enabled by default and is also passed through to customer VMs, we were directly affected by this CVE. As part of our mitigation planning, we evaluated several options, including disabling nested KVM. However, we decided against this approach and instead, depending on patch availability, evaluated the possibility of applying a live patch.
We remained in close contact with the CloudLinux/KernelCare team, who confirmed on 7 July that they would support live patching for this CVE. Later that same day, the patches were released and applied to all virtualization cluster nodes, mitigating the vulnerability without requiring a reboot or disabling nested KVM.
We would like to thank the CloudLinux team for their excellent communication and for providing patches for this critical CVE on such short notice.
