WeSearch

Copy Fail: 732 Bytes to Root on Every Major Linux Distribution

·10 min read · 0 reactions · 0 comments · 1 view
Copy Fail: 732 Bytes to Root on Every Major Linux Distribution

Xint Code disclosed CVE-2026-31431, an authencesn scratch-write bug chaining AF_ALG + splice() into a 4-byte page cache write. A 732-byte PoC gets root on Ubuntu, Amazon Linux, RHEL, SUSE. | AI for Security, Vulnerability Research

Original article
Xint
Read full at Xint →
Opening excerpt (first ~120 words) tap to expand

AI for Security Vulnerability ResearchCopy Fail: 732 Bytes to Root on Every Major Linux Distribution.Xint Code disclosed CVE-2026-31431, an authencesn scratch-write bug chaining AF_ALG + splice() into a 4-byte page cache write. A 732-byte PoC gets root on Ubuntu, Amazon Linux, RHEL, SUSE.Apr 29, 2026ContentsWhat Makes Copy Fail DifferentThe Root Cause: Page Cache Pages in the Writable ScatterlistThe Trigger: authencesn's Scratch WriteHow This HappenedThe ExploitThe DemoThe FixRemediationCoordinated Disclosure TimelineHow We Found ItCopy Fail: 732 Bytes to Root on Every Major Linux Distribution.Xint Code Research TeamCopy Fail (CVE-2026-31431) is a logic bug in the Linux kernel's authencesn cryptographic template.

Excerpt limited to ~120 words for fair-use compliance. The full article is at Xint.

Anonymous · no account needed
Share 𝕏 Facebook Reddit LinkedIn Threads WhatsApp Bluesky Mastodon Email

Discussion

0 comments

More from Xint

Stop letting AI generate broken SVG spaghetti
GitHub·1
TypeScript framework for building non-blocking AI agents
GitHub·1
How to reliably connect LLMs to real-world data and systems
TechRadar·1
GE HealthCare: Soft Execution More Than Priced Accordingly
Seeking Alpha·1
I Replaced Microsoft 365 With This Free Program, and I'm Happy With the Switch
CNET — News·1
Joe Lombardo is walking the Trump tightrope. It may be a roadmap for the GOP.
Politico·0