A local privilege escalation (LPE) vulnerability affecting the Linux kernel has been publicly disclosed on April 29, 2026. The vulnerability has been assigned CVE ID CVE-2026-31431 and is referred to as Copy Fail. The affected component is a kernel module that provides hardware-accelerated cryptographic functions: algif_aead. The vulnerab […]

The Ubuntu Blog provides updates, tutorials, and insights on the Ubuntu operating system and related projects. Covering topics such as Linux desktops, server administration, and cloud computing, the blog offers resources for developers and sysadmins working with Ubuntu. Developers can learn how to set up, configure, and optimize Ubuntu systems for development, deployment, and production environments by following the Ubuntu Blog.

Ubuntu

A high-severity (CVSS 7.8) local privilege escalation vulnerability, CVE-2026-31431 (Copy Fail), has been disclosed in the Linux kernel's algif_aead module, which provides hardware-accelerated cryptographic functions. All Ubuntu releases before Resolute (26.04) are affected. The Ubuntu Security Team has released mitigations via the kmod package that disable the vulnerable module. A full kernel patch is also forthcoming. The post details how to check if your system is impacted, how to apply the kmod mitigation or manually block the module, and how to handle edge cases like running containers or applications that may not gracefully fall back to software cryptography.

Fixes available for CVE-2026-31431 (Copy Fail) Linux Kernel Local Privilege Escalation Vulnerability