CISA Warning: High-Severity Linux Flaw Puts Unpatched Systems at Risk
The US Cybersecurity and Infrastructure Security Agency warns that a nine-year-old Linux kernel flaw, CVE-2026-31431, is being actively exploited, allowing local attackers to gain root access on affected systems. The vulnerability affects the Linux kernel's crypto subsystem and could allow a low-privileged user to gain full system control.
A Linux kernel flaw, CVE-2026-31431, is being actively exploited, allowing local attackers to gain root access on affected systems. The vulnerability affects the Linux kernel's crypto subsystem and is caused by a logic flaw in how Linux handles certain cryptographic live-memory operations using its splice feature. This allows data to be written into regions that are supposed to be read-only, bypassing file integrity checks. The US Cybersecurity and Infrastructure Security Agency has warned Linux admins to patch quickly. The flaw remained undisclosed for nearly a decade until an AI system from Theori noticed it. A patch has been issued, along with a detailed proof of concept and exploit details for the vulnerability.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.