rabber@lemmy.ca to Linux@lemmy.mlEnglish · 17 days agoCopy Fail (CVE-2026-31431) is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms.copy.failexternal-linkmessage-square38linkfedilinkarrow-up1248arrow-down12cross-posted to: selfhosted@lemmy.worldlinux@lemmy.mlselfhosted@lemmy.worldtechnology@lemmy.worldlinux@programming.devhackernews@lemmy.bestiver.se
arrow-up1246arrow-down1external-linkCopy Fail (CVE-2026-31431) is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms.copy.failrabber@lemmy.ca to Linux@lemmy.mlEnglish · 17 days agomessage-square38linkfedilinkcross-posted to: selfhosted@lemmy.worldlinux@lemmy.mlselfhosted@lemmy.worldtechnology@lemmy.worldlinux@programming.devhackernews@lemmy.bestiver.se
minus-squareAatube@piefed.sociallinkfedilinkEnglisharrow-up6arrow-down1·17 days agoThe compressed binary blob is just a 160 B ELF when uncompressed. I don’t think you can do much with that.
minus-squareatzanteol@sh.itjust.workslinkfedilinkEnglisharrow-up10·17 days agoYou could probably write all zeros to a file. Say, /dev/sda?
minus-squarequick_snail@feddit.nllinkfedilinkarrow-up9·16 days agoI bet you could gain root on many old kernels
The compressed binary blob is just a 160 B ELF when uncompressed. I don’t think you can do much with that.
You could probably write all zeros to a file. Say, /dev/sda?
???
profit
I bet you could gain root on many old kernels