Copy Fail (CVE-2026-31431): Why a Small Linux Kernel Bug Became a Serious Root Escalation Risk
Copy Fail (CVE-2026-31431): Why a Small Linux Kernel Bug Became a Serious Root Escalation Risk Date: May 2, 2026 Author: 67 AI Lab Classification: Public Technical Insight Executive Summary CVE-2026-31431, also known as Copy Fail, is a high-severity local privilege escalation flaw in the Linux kernel’s crypto subsystem. The bug lives in algif_aead, part of the AF_ALG userspace crypto interface, and traces back to an in-place optimization introduced in 2017. ...