AI is accelerating and improving how security engineers find and fix vulnerabilities. A new tool developed and used at Canonical, called Redhound, has already uncovered three critical logic vunerabilites, paving the way for a more secure software landscape. […]

The Ubuntu Blog provides updates, tutorials, and insights on the Ubuntu operating system and related projects. Covering topics such as Linux desktops, server administration, and cloud computing, the blog offers resources for developers and sysadmins working with Ubuntu. Developers can learn how to set up, configure, and optimize Ubuntu systems for development, deployment, and production environments by following the Ubuntu Blog.

Ubuntu

Canonical developed an internal AI-powered security auditing agent called Redhound that autonomously hunts for logic flaws in codebases. Unlike static analysis or fuzzing, Redhound reasons about missing checks and divergent validation paths. It operates in five phases: deterministic recon, threat modeling, iterative hypothesis generation, debunking, and impact assessment. In its first deployment against LXD, Redhound discovered three critical logic vulnerabilities (CVSS 9.1 each) in under a day — all of which had survived years of manual review. The three CVEs (CVE-2026-34177, CVE-2026-34178, CVE-2026-34179) involve certificate type escalation, incomplete VM option denylists, and backup restore desynchronization, each allowing a restricted user to escalate to host root. All have been patched and disclosed.

Finding the blind spot: How Canonical hunts logic flaws with AI

The bugs that fall through every other tool