Copy Fail — 732 Bytes to Root
copy.fail
CVE-2026-31431. 100% Reliable Linux LPE — no race, no per-distro offsets, page-cache write that bypasses on-disk file-integrity tools and crosses containers. Found by Xint Code.
    • nyan@sh.itjust.works
      19·
      13 hours ago

      Exactly. It’s Yet Another Privilege Escalation Vulnerability. Unless you’re dealing with a multiuser machine, the attacker first needs to use some other vuln to get into an unprivileged account. Without that additional vulnerability, this exploit is useless.

      • solrize@lemmy.ml
        15·
        12 hours ago

        some other vuln

        You mean like inveigling it into a pypi or npm or whatever package? Checks out.

        • olosta@lemmy.world
          4·
          2 hours ago

          I manage multi user systems and try to be on top of this and no, privilege escalation with a working public exploit are very rare. There’s quite a lot of CVEs with potential privilege excalation, but most of the time there is no real world exploit. And a large part of those are related to user namespaces in one way or another.

          This one is truly scary, at least the immediate mitigation is pretty straightforward.

        • nyan@sh.itjust.works
          6·
          11 hours ago

          Well, it often feels like every “Linux security issue” flagged in the tech press is a privilege escalation, but I admit that I haven’t sat down and done the math.

      • sakuraba@lemmy.ml
        7·
        13 hours ago

        hey these exploits keep the lights on for some tech youtubers, stop making fun of it!! it is very dangerous!!!

        (video titled: LINUX HAS BEEN HACKED, AGAIN?!)