Reddit
CVE-2026-31431 'Copy Fail': Linux Kernel 0-Day Gives Root on Every Major Distro Since 2017 via 732-Byte Python Script
A critical privilege escalation in the Linux kernel's algif_aead module (CVSS 7.8) allows any unprivileged local user to get root with a deterministic 732-byte Python script — no race conditions, no kernel offsets, no compiled payloads. Discovered by Theori researcher Taeyang Lee, the flaw traces to a 2017 commit enabling page-cache pages in writable scatterlists. Disclosed April 29; NO vendor kernel patches have shipped yet. r/LocalLLaMA flagged it urgently (91 upvotes): disable algif_aead module immediately.
Source
↳ Follow the thread