Will 
Copy Fail (CVE-2026-31431), disclosed Wednesday by security firm Theori, lets any local #Linux user gain root access on #Ubuntu, Amazon Linux, #RHEL, and #SUSE. The bug traces to a 2017 optimization in the kernel’s AEAD crypto path; an #AI powered scanner reportedly found it after just one hour of analysis. Kernel patches are available and SUSE called the flaw “extremely dangerous,” urging administrators to update or blacklist the algif_aead module immediately.
Copy Fail: 732 Bytes to Root on Every Major Linux Distribution. - Xint
Xint Code disclosed CVE-2026-31431, an authencesn scratch-write bug chaining AF_ALG + splice() into a 4-byte page cache write. A 732-byte PoC gets root on Ubuntu, Amazon Linux, RHEL, SUSE. | AI for Security, Vulnerability Research