Copy Fail exposes Linux to root by exploiting kernel crypto path

April 30, 2026 at 11:30 AM

•

1 min read

Copy Fail exposes Linux to root by exploiting kernel crypto path — Photo: The Hacker News

TL;DR Summary

Security researchers disclosed Copy Fail (CVE-2026-31431), a Linux local privilege-escalation flaw in the algif_aead kernel module that lets an unprivileged user corrupt a page cache and elevate to root across major distributions since 2017. The issue is portable, cross-container, and can be triggered with a small Python script, prompting advisories from major distros. Exploitation is local (not remote) but remains highly dangerous due to its ease and wide impact.

Topics:technology #algifaead #cve-2026-31431 #kernel #linux #privilegeescalation #security

Share this article

New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions The Hacker News
Linux cryptographic code flaw offers fast route to root theregister.com
Easily Exploitable ‘Pack2TheRoot’ Linux Vulnerability Leads to Root Access SecurityWeek
Linux Kernel 0-Day "Copy Fail" Roots Every Major Distribution Since 2017 CyberSecurityNews
Pack2TheRoot (CVE-2026-41651): Critical Local Privilege Escalation Vulnerability in PackageKit Grants Root Access on Major Linux Distributions Rescana

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

86%

479 → 69 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights