Proof-of-concept exploit available for Linux 'Copy Fail' vulnerability (CVE-2026-31431)

On April 29, 2026 the 'Copy Fail' vulnerability (CVE-2026-31431), a high-severity (CVSS 7.8) local privilege escalation affecting Linux kernels shipped since 2017, was publicly disclosed with proof-of-concept exploit code; it allows unprivileged users to gain root by corrupting the kernel in-memory page cache, is reported reliable across major distributions, and organizations are advised to apply vendor kernel updates or temporary mitigations, especially for multi-tenant and container hosts, while SophosLabs monitors for exploitation.