ctipilot.chSwitzerland · Europe · Public sector

Copy Fail — Linux kernel algif_aead LPE (ITW, KEV deadline 2026-05-15)

cve · CVE-2026-31431

First covered
2026-05-06
Last covered
2026-05-07
Appearances
2

All cited sources for this topic (5)

Story timeline

  1. 2026-05-07CTI Daily Brief — 2026-05-07
    updatesUPDATE: Go and Rust exploit variants now publicly available; container-to-host escape vector validated by Kaspersky. KEV deadline 2026-05-15 unchanged.
  2. 2026-05-06CTI Daily Brief — 2026-05-06
    active_vulnsFirst coverage. Active ITW exploitation confirmed; CISA KEV deadline 2026-05-15; deterministic 732-byte Python exploit; all Linux kernels 4.14-6.19.11 affected; container-to-host escalation risk. Deep dive in § 5.