rabber@lemmy.ca to Linux@lemmy.mlEnglish · 7 days agoCopy Fail (CVE-2026-31431) is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms.copy.failexternal-linkmessage-square37linkfedilinkarrow-up11cross-posted to: selfhosted@lemmy.worldlinux@lemmy.mlselfhosted@lemmy.world
arrow-up11external-linkCopy Fail (CVE-2026-31431) is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms.copy.failrabber@lemmy.ca to Linux@lemmy.mlEnglish · 7 days agomessage-square37linkfedilinkcross-posted to: selfhosted@lemmy.worldlinux@lemmy.mlselfhosted@lemmy.world
minus-squareAatube@piefed.sociallinkfedilinkEnglisharrow-up0·7 days agoThe compressed binary blob is just a 160 B ELF when uncompressed. I don’t think you can do much with that.
minus-squarequick_snail@feddit.nllinkfedilinkarrow-up0·6 days agoI bet you could gain root on many old kernels
minus-squareatzanteol@sh.itjust.workslinkfedilinkEnglisharrow-up0·7 days agoYou could probably write all zeros to a file. Say, /dev/sda?
The compressed binary blob is just a 160 B ELF when uncompressed. I don’t think you can do much with that.
I bet you could gain root on many old kernels
You could probably write all zeros to a file. Say, /dev/sda?
???
profit