Copy Fail: Linux flaw lets any user grab root, patches rolling out

1 min read
Source: The Verge
Copy Fail: Linux flaw lets any user grab root, patches rolling out
Photo: The Verge
TL;DR Summary

A widespread Linux vulnerability called Copy Fail (CVE-2026-31431) lets any user escalate to administrator privileges across most distributions since 2017. The exploit uses a cross-distro Python script with no per-distro offsets or recompilation, and can evade detection due to page-cache corruption that hides modified bytes from common monitoring tools. Theori researchers, with help from the Xint Code AI tool, disclosed the flaw; a patch was added to the mainline Linux kernel on April 1, and some distributions (e.g., Arch Linux, Red Hat Fedora, Amazon Linux) have since released patches or mitigations, though many others remain unpatched.

Share this article

Reading Insights

Total Reads

0

Unique Readers

30

Time Saved

53 min

vs 54 min read

Condensed

99%

10,62796 words

Want the full story? Read the original article

Read on The Verge