CVE-2026-31431
crypto: algif_aead - Revert to operating out-of-place
En resumen
Una falla en el módulo de cifrado AEAD del kernel Linux permitía operaciones de cifrado ineficientes e inseguras en la misma ubicación de memoria. La corrección vuelve a usar operaciones separadas donde la entrada y salida se mantienen en ubicaciones distintas, mejorando seguridad y rendimiento.
Detalle técnico
CVE-2026-31431 aborda una vulnerabilidad en algif_aead (interfaz de algoritmo AEAD) del subsistema criptográfico del kernel Linux, donde operaciones de cifrado in-place agregaban complejidad innecesaria y riesgos de seguridad. La vulnerabilidad surge del intento de operar en la misma ubicación de memoria para origen y destino cuando estos buffers provienen de asignaciones de memoria diferentes; la solución revierte a operaciones out-of-place que copian datos asociados directamente, eliminando superficie de ataque.
Resumen generado y traducido por IA a partir de la descripción oficial.
In the Linux kernel, the following vulnerability has been resolved:
crypto: algif_aead - Revert to operating out-of-place
This mostly reverts commit 72548b093ee3 except for the copying of
the associated data.
There is no benefit in operating in-place in algif_aead since the
source and destination come from different mappings. Get rid of
all the complexity added for in-place operation and just copy the
AD directly.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Linux · LinuxPoCs públicas encontradas — 97
githubgithub.com/tgies/copy-fail-c★ 429githubgithub.com/cozystack/copy-fail-blocker★ 31githubgithub.com/KaraZajac/DIRTYFAIL★ 19githubgithub.com/Smarttfoxx/copyfail★ 18githubgithub.com/sgkdev/ptrace_may_dream★ 15githubgithub.com/JuanBindez/CVE-2026-31431★ 13githubgithub.com/philfry/cve-2026-31431-ftrace★ 12githubgithub.com/ochebotar/copy-fail-CVE-2026-31431-detection-probe★ 10githubgithub.com/yandex-cloud-examples/yc-mk8s-copy-fail-mitigation★ 10githubgithub.com/4xura/CVE-2026-31431-Copy-Fail★ 6githubgithub.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag★ 6githubgithub.com/samanzamani/copy-fail-checker★ 4githubgithub.com/lonelyor/CVE-2026-31431-exp★ 3githubgithub.com/haydenjames/CVE-2026-31431-check★ 3githubgithub.com/Pithase/asm-copyfail★ 3githubgithub.com/Dullpurple-sloop726/CVE-2026-31431-Linux-Copy-Fail★ 3githubgithub.com/guiimoraes/CVE-2026-31431★ 3githubgithub.com/Koshmare-Blossom/Copyfail-sh★ 3githubgithub.com/krisiasty/vcheck★ 2githubgithub.com/insomnisec/Detections-CVE-2026-31431★ 2githubgithub.com/Iamliuxiaozhen/copy_fail★ 2githubgithub.com/Aurillium/RootRemover★ 2githubgithub.com/rvzsec/CVE-2026-31431★ 2githubgithub.com/bootsareme/copyfail-deconstructed★ 2githubgithub.com/adityasingh108/CVE-2026-31431-Metasploit-exploit★ 2githubgithub.com/waltrone1/copyfail-safe-check★ 2githubgithub.com/juliosuas/copyfail-guard★ 2githubgithub.com/dgrobinson0/CopyFile_CVE-2026-31431★ 1githubgithub.com/gagaltotal/cve-2026-31431-copy-fail★ 1githubgithub.com/studiogangster/CVE-2026-31431★ 1githubgithub.com/gbonacini/CVE-2026-31431★ 1githubgithub.com/itsystem/afalg-check★ 1githubgithub.com/4n4s4zi/copyfail-alpine★ 1githubgithub.com/karollooool/Porting-CVE-2026-31431-Copy-Fail-to-a-Constrained-Java-Runner★ 1githubgithub.com/Sebastian294/cve-2026-31431★ 1githubgithub.com/OpenPixelSystems/c-copy-fail★ 1githubgithub.com/u1tr0nex/CVE-2026-31431-CopyFail-Lab★ 0githubgithub.com/hyz-is/copyfail-fix★ 0githubgithub.com/SystemVll/CVE-2026-31431-copyfail-aarch64★ 0githubgithub.com/DroPZsec/SplicePrivillegeEscalationFIX★ 0githubgithub.com/kuniyal08/Copy-Fail-CVE-2026-31431-Lab★ 0githubgithub.com/SilverRuler/copy-fail-CVE-2026-31431★ 0githubgithub.com/0xFuffM3/CVE-2026-31431-CopyFail★ 0githubgithub.com/dotPY-hax/CopyFail★ 0githubgithub.com/zKaaanon/ProyectoFinalSO★ 0githubgithub.com/Maxime288/CVE-2026-31431-Copy-Fail-R-pertoire-de-Pr-vention★ 0githubgithub.com/royayub/CVE-2026-31431★ 0githubgithub.com/Yakovyakov/cve-2026-31431-mitigation★ 0githubgithub.com/cj667113/OCI-Ansible-Fix-CVE-2026-31431★ 0githubgithub.com/GubiczaP/cve-2026-31431-checker★ 0githubgithub.com/yangh-beep/CVE-2026-31431-C★ 0githubgithub.com/JimmyPughtron/CVE-2026-31431-Copy-Fail---Minified-LPE-PoC★ 0githubgithub.com/wh1sky02/copy-fail-python★ 0githubgithub.com/ridhinva/linux-kernel-algif-aead-checker★ 0githubgithub.com/1neptune/CopyFail★ 0githubgithub.com/polyakovavv/copyfail★ 0githubgithub.com/John-Popovici/CVE-2026-31431-CopyFail-Linux-PrivEsc★ 0githubgithub.com/ryan2929/CVE-2026-31431★ 0githubgithub.com/adampielak/CVE-2026-31431_SCA_WAZUH★ 0githubgithub.com/selectel/mks-copy-fail-mitigation★ 0githubgithub.com/Juguitos/copy-fail★ 0githubgithub.com/deckhouse/d8-copy-fail-mitigation★ 0githubgithub.com/HulnotHutu/CVE-2026-31431★ 0githubgithub.com/OmerAti/almalinux-fix-cve-2026-31431★ 0githubgithub.com/K3ysTr0K3R/CVE-2026-31431-EXPLOIT★ 0githubgithub.com/monobrau/copyfailscan★ 0githubgithub.com/ROSNLR5/modrosnlr5★ 0githubgithub.com/suominen/CVE-2026-31431★ 0githubgithub.com/aexdyhaxor/CVE-2026-31431-copy-fail★ 0githubgithub.com/Mrhudson69/cve-2026-31431★ 0githubgithub.com/6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284★ 0githubgithub.com/Liverwortenuresis371/copyfail-rs★ 0githubgithub.com/luoqianlin/copyfail-c★ 0githubgithub.com/ikow/CVE-2026-31431-live-code-corruption★ 0githubgithub.com/Mr-bv/Copy-fail-CVE-2026-31431-Exploit-in-C★ 0githubgithub.com/adilkurtulmus/linux-copy-fail-CVE-2026-31431★ 0githubgithub.com/tang-yikai/copy-fail-mitigation-with-bpftrace★ 0githubgithub.com/abdelkabirouadoukou/CVE-2026-31431-Analysis-and-Fix★ 0githubgithub.com/julichaan/CVE-2026-31431-python-copyfail-POC★ 0githubgithub.com/Morton-Li/copy-fail-CVE-2026-31431★ 0githubgithub.com/p401a-ops/Copy-Fail★ 0githubgithub.com/ROSNLR5/MitigationToolkit-ROSN-LR5-Full★ 0githubgithub.com/hori0729/CVE-2026-31431-Verificador-Exploit★ 0githubgithub.com/vorkampfer/copy_fail_mitigation★ 0githubgithub.com/Hunt-Benito/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe★ 0githubgithub.com/Helios973/CVE-2026-31431_exp.c★ 0githubgithub.com/cleozi/Copy_Grail★ 0githubgithub.com/vorkampfer/copyfail2_electric_boogaloo_fix★ 0githubgithub.com/Karim33z/CVE-2026-31431★ 0githubgithub.com/Lutfifakee-Project/CVE-2026-31431★ 0githubgithub.com/mauricioportela/CVE-2026-31431-Analysis★ 0githubgithub.com/songzzzz/CVE-2026-31431★ 0githubgithub.com/vishvacyber/Detection-Tool-Kit-for-CVE-2026-31431★ 0githubgithub.com/tematemaru/CVE-2026-31431-simple-test★ 0githubgithub.com/zs1n/copy-fail-CVE-2026-31431★ 0githubgithub.com/t1ckprivate/CVE-2026-31431-Copy-Fail★ 0cve_referencegithub.com/theori-io/copy-fail-CVE-2026-31431no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://access.redhat.com/security/cve/cve-2026-31431#cve-details-mitigationhttps://cert-portal.siemens.com/productcert/html/ssa-082556.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-265688.htmlhttps://copy.failhttps://github.com/theori-io/copy-fail-CVE-2026-31431https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130chttps://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fchttps://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667https://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82https://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875bhttps://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5https://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237