VulnerabilityBleeping Computer
7.8 — HIGH
New Linux ‘Copy Fail’ flaw gives hackers root on major distros
An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root permissions. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
A local privilege escalation vulnerability, 'Copy Fail' (CVE-2026-31431), was discovered in Linux kernels released since 2017, allowing an unprivileged attacker to gain root permissions on major distributions.
⚙️Technical Details
Affected Systems
Linux kernels released since 2017
Attack Vectors
LOCALAF_ALG socket-based interface and splice() system call
💥Impact Assessment
Severity: HIGH
Who Is at Risk
Users of Linux distributions running vulnerable kernel versions, including Ubuntu 24.04 LTS, Amazon Linux 2023, RHEL 10.1, and SUSE 16
🛡️Recommended Actions
1Disable the vulnerable crypto interface by creating a configuration file with 'echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf'
2Disable the algif_aead module using `rmmod algif_aead`
3Apply official patches or updates as soon as available
📦Affected Products
Linux distributions running vulnerable kernel versions
🔐NVD Verified DataVERIFIED
CVE-2026-31431 ↗CVSS 7.8 — HIGH
Attack Vector
LOCAL
Complexity
LOW
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HWeaknesses
CWE-669
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.