Feed›Vulnerability›Linux Kernel 0-Day “Copy Fail” Roots Every Major Distributio...

VulnerabilityCyber Security News

7.8 — HIGH

Linux Kernel 0-Day “Copy Fail” Roots Every Major Distribution Since 2017

📅 30 April 2026 at 02:31 UTC📰 Cyber Security NewsView original source ↗

A critical zero-day vulnerability in the Linux kernel has been publicly disclosed, enabling any unprivileged local user to obtain root access on virtually every major Linux distribution shipped since 2017. Dubbed “Copy Fail” and tracked as CVE-2026-31431, the flaw was discovered by Theori researcher Taeyang Lee and scaled into a full exploit chain by the […] The post Linux Kernel 0-Day “Copy Fail” Roots Every Major Distribution Since 2017 appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

A critical Linux kernel zero-day vulnerability, CVE-2026-31431, 'Copy Fail', allows unprivileged local users to obtain root access on virtually every major Linux distribution shipped since 2017.

⚙️Technical Details

CVEs

CVE-2026-31431

Affected Systems

Amazon Amazon LinuxArista Cloudvision AgniArista Cloudvision PortalArista Netvisor OsArista Velocloud Edge

Attack Vectors

LOCAL

💥Impact Assessment

Severity: critical

Who Is at Risk

Users of affected Linux distributions, particularly those with unprivileged local access.

🛡️Recommended Actions

1Apply the latest kernel patches from the Linux kernel stable repository

2Disable unnecessary services and daemons to reduce attack surface

3Implement strict file permissions and access controls for sensitive data

📦Affected Products

Amazon Amazon LinuxArista Cloudvision AgniArista Cloudvision PortalArista Netvisor OsArista Velocloud EdgeArista Velocloud GatewayCanonical Ubuntu LinuxDebian Debian LinuxLinux Linux KernelNixos Nixos

🔐NVD Verified DataVERIFIED

CVE-2026-31431 ↗CVSS 7.8 — HIGH

Attack Vector

LOCAL

Complexity

LOW

Vector String

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses

CWE-669

Affected Products (CPE)

Amazon Amazon LinuxArista Cloudvision AgniArista Cloudvision PortalArista Netvisor OsArista Velocloud Edge

Patches & References

🔧 https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc13…🔧 https://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6…🔧 https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba60327476…

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News ↗

← Back to feed