CVE-2026-31431 ("CopyFail") is a critical local privilege escalation vulnerability in the Linux kernel introduced in version 4.14 and affecting all subsequent releases. Fixes were released April 11 in kernels 6.18.22, 6.19.12, and 7.0, but long-term support versions (6.12, 6.6, 6.1, 5.15, 5.10) remain unpatched due to backporting complexity. The vulnerability was disclosed without coordinated notification to the linux-distros mailing list, eliminating the standard advance warning window for distribution mitigation planning.
Policy
For Linux kernel vulnerabilities, there is no heads-up to distributions
Critical Linux kernel LPE (CopyFail) disclosed without advance notice to distributions, breaking the standard coordinated vulnerability disclosure process for patch planning.
Friday, May 1, 2026 12:00 PM UTC2 MIN READSOURCE: Hacker NewsBY sys://pipeline
Tags
policy
/// RELATED
Safety4d ago
Severe Linux Copy Fail security flaw uncovered using AI scanning help
AI-powered security scanning uncovered Copy Fail, a critical privilege escalation flaw affecting all Linux distributions since 2017 through kernel page-cache corruption in the crypto subsystem.
Safety5d ago
Linux cryptographic code flaw offers fast route to root
CVE-2026-31431 ('Copy Fail') exposes a critical Linux kernel cryptographic flaw exploitable with just 10 lines of code, affecting virtually all distributions since 2017 and enabling container escapes.