Última hora
RUВ Киеве произошла четвертая серия взрывов за ночьARإسرائيل تتجه نحو أزمة دستورية كبرى بعد تحدي الحكومة لقرار المحكمة العلياCN税务部门发出补税提醒:莫让“小聪明”蚕食钱袋子与社会公平RUКиев остался без света и воды после серии ракетных ударовBRTerremoto em La Guaira: Resgates, Abrigos e Críticas à Gestão da CriseBRHomem é preso com 13.820 pinos de cocaína em ArealARالبرازيل تودع كأس العالم بخسارة أمام النرويج.. وهالاند يقود "الفايكنغ" لربع النهائيBRIncêndios florestais atingem Grécia, Portugal e FrançaCN氣象專家:巴威颱風接近台灣有三特徵RURussian Air Defense Downs Four More Drones Near MoscowRUВ Киеве произошла четвертая серия взрывов за ночьARإسرائيل تتجه نحو أزمة دستورية كبرى بعد تحدي الحكومة لقرار المحكمة العلياCN税务部门发出补税提醒:莫让“小聪明”蚕食钱袋子与社会公平RUКиев остался без света и воды после серии ракетных ударовBRTerremoto em La Guaira: Resgates, Abrigos e Críticas à Gestão da CriseBRHomem é preso com 13.820 pinos de cocaína em ArealARالبرازيل تودع كأس العالم بخسارة أمام النرويج.. وهالاند يقود "الفايكنغ" لربع النهائيBRIncêndios florestais atingem Grécia, Portugal e FrançaCN氣象專家:巴威颱風接近台灣有三特徵RURussian Air Defense Downs Four More Drones Near Moscow
Newsgather
BackCritical 'Copy Fail' Linux Vulnerability Threatens Major Distributions
Critical 'Copy Fail' Linux Vulnerability Threatens Major Distributions
En desarrollo
Cointelegraph02.05.2026Tecnología1 dk okuma

Critical 'Copy Fail' Linux Vulnerability Threatens Major Distributions

CISA adds the flaw to its Known Exploited Vulnerabilities catalog as researchers warn of easy root access

En resumen

  • A newly discovered Linux vulnerability dubbed 'Copy Fail' allows attackers to gain root access via a simple Python script.
  • CISA has added the flaw to its Known Exploited Vulnerabilities catalog, citing significant risks to federal systems.

Resumen generado por IA

Por qué importa

The 'Copy Fail' vulnerability is a logic bug affecting Linux distributions released since 2017, allowing for privilege escalation to root access.

Tamaño de fuente

A newly discovered vulnerability could affect most open-source major Linux distributions released since 2017, according to security researchers.

The flaw, titled “Copy Fail,” caught the attention of the US Cybersecurity and Infrastructure Agency (CISA), who added it to the Known Exploited Vulnerabilities (KEV) catalog on Saturday, warning it poses “significant risks to the federal enterprise.”

The vulnerability can allow attackers to gain root access across a wide range of Linux systems using a 732-byte Python script, though it requires prior code execution on the system to escalate privileges.

Researcher Miguel Angel Duran said that it only requires “10 lines of Python” to access root permissions on any affected system. “This Linux vulnerability is insane,” Duran said.

Linux is a widely used operating system by cryptocurrency exchanges, blockchain nodes and custodial services, due to its security and efficiency, meaning the vulnerability could potentially pose risks to the sector if attackers gain initial access.

Xint Code said in an X post on Saturday that the flaw “is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years.” “A small, portable python script gets root on all platforms,” Xint Code said.

Cybersecurity firm Theori CEO Brian Pak said in an X post on Saturday that he reported the vulnerability “privately” to the Linux kernel security team on March 23. “We worked with them on patches, which landed in mainline on April 1. CVE assigned April 22. We disclosed publicly on April 29 with a full write-up and PoC,” Pak said.

Qué observar

Perspectiva de IA — posibilidades, no hechos

  • Increased reports of attempted exploits targeting unpatched Linux servers.

    Probable · En semanas

Preguntas abiertas

  • What is the specific CVE identifier for this vulnerability?
  • How many systems have been successfully compromised using this exploit so far?

Temas relacionados

This article was originally published by Cointelegraph.

Noticias relacionadas

Más sobre este temalinux