Exploit released for new PinTheft Arch Linux root escalation flaw

A proof-of-concept for a newly patched Linux local privilege escalation named "PinTheft" has been published; the exploit abuses an RDS zerocopy double-free combined with io_uring to steal page references and obtain a root shell. Exploitation requires the RDS kernel module loaded (default on Arch Linux), io_uring enabled, a readable SUID-root binary, and x86_64 payload support, limiting the attack surface; vendors have patched the flaw and mitigations (unloading/disabling RDS) are provided. The report also references a string of recent Linux LPE disclosures and active exploitation of related flaws (e.g., Copy Fail).