This critical Linux vulnerability is putting millions of systems at risk - how to protect yours

ZDNET describes CVE-2026-31431 (“Copy Fail”), a critical Linux kernel vulnerability present in kernels 4.14 through 6.19.12 that allows an attacker with basic access to overwrite bytes in the kernel page cache (via AF_ALG and splice()) to modify in-memory setuid binaries and gain root privileges; the article emphasizes ease of exploitation, wide impact, and recommends updating kernels or disabling the algif_aead module as mitigation.