Linux cryptographic code flaw offers fast route to root

Developers of major Linux distributions have begun shipping patches to address a local privilege escalation (LPE) vulnerability dubbed Copy Fail (CVE-2026-31431) arising from a flaw in the Linux kernel's authentication cryptographic template. An unprivileged local user can write four controlled bytes into the page cache of any readable file, enabling root access via a 10-line Python exploit.

Read the full article and join the community discussion on Inimzu.