A critical vulnerability in Linux kernels, known as "Copy Fail," has been discovered, permitting unauthorized users to gain root access on major distributions. This flaw, present in kernels released since 2017, enables local attackers to escalate privileges and assume control of the system. The vulnerability is particularly concerning, as it allows unprivileged users to exploit a weakness in the kernel's file copying mechanism, ultimately granting them unrestricted access to the system. An exploit for this vulnerability has been made publicly available, increasing the risk of widespread attacks1. The impacted kernels affect a wide range of Linux distributions, making this a significant concern for system administrators and security professionals. This vulnerability matters to practitioners because it highlights the importance of prompt kernel updates and patches to prevent potential exploits, especially given the ease with which attackers can now gain root access.
New Linux ‘Copy Fail’ flaw gives hackers root on major distros
⚠️ Critical Alert
Why This Matters
An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local.
References
- BleepingComputer. (2026, April 30). New Linux ‘Copy Fail’ flaw gives hackers root on major distros. *BleepingComputer*. https://www.bleepingcomputer.com/news/security/new-linux-copy-fail-flaw-gives-hackers-root-on-major-distros/
Original Source
BleepingComputer
Read original →