Fetching from the wire…
Security2026-07-10 · source-backed
Ars Technica reports it's one of two Linux flaws this week granting root to untrusted users. Guest escape breaks the isolation assumption underneath every multi-tenant inference host and every sandboxed agent runtime. If you run untrusted agent-generated code in VM isolation, this is a patching priority, not kernel-team trivia. Separately, Microsoft's patch for a Windows Defender 0-day still lets attackers exhaust disk space, which is a fine reminder that a shipped patch and a closed vulnerability class are different things.
Each link below shares sources, entities, or timing with this story.
Microsoft competes with Google / Shared entities / Earlier coverage
Linked by a graph relationship (Microsoft competes with Google); both cover Google, Linux, Microsoft; earlier Google coverage from 2026-04-02.
Google released MCP / Shared entities / Shared topic / Earlier coverage
Linked by a graph relationship (Google released MCP); both cover Google, Microsoft; overlapping topics (agent, linux).
Claude Code supports Linux / Shared entity: Microsoft / Shared topic / Earlier coverage / Tension
Linked by a graph relationship (Claude Code supports Linux); both cover Microsoft; overlapping topics (agent, attacker, code).