mystygage Apr 30
uberspace.de
Guten Abend! Wir haben vorhin diese wunderbare Lücke gepatcht: https://copy.fail/ Wenn ihr irgendwelche Linuxe habt auf denen "untrusted workloads" (containers, sandboxes, CI) laufen, solltet ihr einen Blick drauf werfen. Sehr bald.
Copy Fail — 732 Bytes to Root

CVE-2026-31431. 100% Reliable Linux LPE — no race, no per-distro offsets, page-cache write that bypasses on-disk file-integrity tools and crosses containers. Found by Xint Code.

Xint
Apr 29 at 7:14pmWeb
Show threadwuffelApr 29

@ubernauten

#Autschn

Show threadManawyrm | Sarah -> GPN ☎️6502Apr 29
@ubernauten 🙈
Show threadWolf480plApr 29
@ubernauten I hope this works on Android...
Show threadNias WorldzApr 29
@ubernauten *looks at the site*
... the website's purpose is advertisement for an "AI" tool 🤮
Show threaduberspace.deApr 29
@littlerao pretty much, yes, but the exploit is real and works.
Show threadgloriouscowApr 29
@ubernauten can you even have a CVE these days without making a website for it
Show threadLilaHexeMay 8
@ubernauten would a vulnerability like this (if unpatched), allow an attacker to access my uberspace emails?
Show threaduberspace.deMay 8
@LilaHexe
For sure. If an attacker is able to gain root access, he would have access to everything on the host.
Show threadLilaHexeMay 8
@ubernauten ok so emails are stored on the same server where users have SSH access. :(