Breaking
ESCuatro miembros de una familia mueren en un accidente de tráfico en PalenciaDEZwei Tote bei Autounfall auf der A14 bei LudwigslustAUTemu signs safety pledge after child severely burned by recalled hoodieRUПользователи соцсетей раскритиковали решение ФИФА по красной карточке БалоганаUKCristiano Ronaldo confirms 2022 World Cup will be his lastRUУкраинский дипломат предрек Европе "русские корабли в Дунае"INTLSpain vs. Portugal: World Cup Quarterfinal ShowdownFRPogacar célèbre la victoire d'étape de son coéquipier Del Toro sur le Tour de FranceUSTennessee National Guard Members Fatally Shoot Armed Man in MemphisFR16 enfants découverts dans des conditions d'insalubrité extrême dans l'OhioESCuatro miembros de una familia mueren en un accidente de tráfico en PalenciaDEZwei Tote bei Autounfall auf der A14 bei LudwigslustAUTemu signs safety pledge after child severely burned by recalled hoodieRUПользователи соцсетей раскритиковали решение ФИФА по красной карточке БалоганаUKCristiano Ronaldo confirms 2022 World Cup will be his lastRUУкраинский дипломат предрек Европе "русские корабли в Дунае"INTLSpain vs. Portugal: World Cup Quarterfinal ShowdownFRPogacar célèbre la victoire d'étape de son coéquipier Del Toro sur le Tour de FranceUSTennessee National Guard Members Fatally Shoot Armed Man in MemphisFR16 enfants découverts dans des conditions d'insalubrité extrême dans l'Ohio
Newsgather
BackCritical 'Copy Fail' Linux Vulnerability Threatens Major Distributions
Critical 'Copy Fail' Linux Vulnerability Threatens Major Distributions
Developing
Cointelegraph5/2/2026Tech1 min read

Critical 'Copy Fail' Linux Vulnerability Threatens Major Distributions

CISA adds the flaw to its Known Exploited Vulnerabilities catalog as researchers warn of easy root access

Quick Look

  • A newly discovered Linux vulnerability dubbed 'Copy Fail' allows attackers to gain root access via a simple Python script.
  • CISA has added the flaw to its Known Exploited Vulnerabilities catalog, citing significant risks to federal systems.

AI-generated summary

Why It Matters

The 'Copy Fail' vulnerability is a logic bug affecting Linux distributions released since 2017, allowing for privilege escalation to root access.

Font size

A newly discovered vulnerability could affect most open-source major Linux distributions released since 2017, according to security researchers.

The flaw, titled “Copy Fail,” caught the attention of the US Cybersecurity and Infrastructure Agency (CISA), who added it to the Known Exploited Vulnerabilities (KEV) catalog on Saturday, warning it poses “significant risks to the federal enterprise.”

The vulnerability can allow attackers to gain root access across a wide range of Linux systems using a 732-byte Python script, though it requires prior code execution on the system to escalate privileges.

Researcher Miguel Angel Duran said that it only requires “10 lines of Python” to access root permissions on any affected system. “This Linux vulnerability is insane,” Duran said.

Linux is a widely used operating system by cryptocurrency exchanges, blockchain nodes and custodial services, due to its security and efficiency, meaning the vulnerability could potentially pose risks to the sector if attackers gain initial access.

Xint Code said in an X post on Saturday that the flaw “is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years.” “A small, portable python script gets root on all platforms,” Xint Code said.

Cybersecurity firm Theori CEO Brian Pak said in an X post on Saturday that he reported the vulnerability “privately” to the Linux kernel security team on March 23. “We worked with them on patches, which landed in mainline on April 1. CVE assigned April 22. We disclosed publicly on April 29 with a full write-up and PoC,” Pak said.

What to Watch

AI outlook — possibilities, not facts

  • Increased reports of attempted exploits targeting unpatched Linux servers.

    Likely · Within weeks

Open Questions

  • What is the specific CVE identifier for this vulnerability?
  • How many systems have been successfully compromised using this exploit so far?

Related Topics

This article was originally published by Cointelegraph.

Related Stories

More on this topiclinux