Copy Fail requires only an unprivileged local user account — no network access, no kernel debugging features, no pre-installed primitives

Which is a fairly high hurdle for an attacker in most instances. Unless you’re running something like a shared university server.

Definitely patch your systems though.

I found the website you linked to be easy to digest. Impressed with their work, from the perspective of someone who uses Linux but doesn’t know too much about this stuff (other than patch good). I like how they gave credit to both the human and AI.