2026-005 High Vulnerability in the Linux Kernel ("Copy Fail") — CERT-EU-SA2026-005
CERT-EU · CERT-EU · CERT-EU-SA2026-005
ID
CERT-EU-SA2026-005
CERT-EU-SA2026-005
Date
Activity
Source
CERT-EU
CERT-EU
Vendor
CERT-EU
CERT-EU
Threat
high
high
Summary
On 29 April 2026, a high local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-31431 and named "Copy Fail", was publicly disclosed. The vulnerability affects every mainstream Linux distributions shipping a kernel built since 2017. A public proof-of-concept exploit has been released. As of the date of this advisory, no distribution has shipped a fixed kernel package. The mainline…
Product
Security advisory
What to do
General, cautious steps (verify details in the official source):
- Prioritize patching or mitigation immediately (treat as actively risky).
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.