SECURITY % min read

Critical CopyFail bug puts nearly all major Linux distributions at risk

Critical CopyFail bug puts nearly all major Linux distributions at risk
Photo by Gabriel Heinzer / Unsplash

A critical Linux vulnerability known as CopyFail (CVE-2026-31431) is being actively exploited, allowing attackers to gain full root access on nearly every major Linux distribution released since 2017. Although patched in the kernel, fixes have not yet reached many downstream distributions, leaving enterprise servers and data centers exposed. The flaw corrupts kernel memory and can be chained with other exploits to compromise systems via malicious links, attachments or supply chain attacks. With exploit code publicly available and attacks already underway, CISA has ordered all US federal agencies to patch affected systems by May 15.

Read the full story on TechCrunch →