Linux Copy Fail flaw exploited to gain root across major distros, CISA warns

May 4, 2026 at 01:38 PM

•

1 min read

Linux Copy Fail flaw exploited to gain root across major distros, CISA warns — Photo: BleepingComputer

TL;DR Summary

CISA warns that the Copy Fail vulnerability (CVE-2026-31431) in the Linux kernel’s algif_aead interface is being exploited to obtain root privileges on unpatched systems, with a PoC shown for Ubuntu 24.04 LTS, Amazon Linux 2023, RHEL 10.1, and SUSE 16. Patches are rolling out across major distros; CISA added the flaw to the Known Exploited Vulnerabilities catalog and urges prompt patching per vendor guidance under BOD 22-01, following earlier patches like Pack2TheRoot.

Topics:technology #cisa #copy-fail #cve-2026-31431 #linux-kernel #root-access #security

Share this article

CISA says ‘Copy Fail’ flaw now exploited to root Linux systems BleepingComputer
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV The Hacker News
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments Microsoft
Update Linux Now As 9-Year-Old Root Hack Confirmed, CISA Warns Users Forbes
Copy Fail Linux Kernel Vulnerability Now Patched in Debian, Ubuntu, and Others 9to5Linux

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

89%

637 → 72 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights