this post was submitted on 30 Apr 2026
161 points (98.2% liked)

Technology

84256 readers
5754 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
161
Copy Fail: 732 Bytes to Root on Every Major Linux Distribution. - Xint (xint.io)
submitted 23 hours ago by volkerwirsing@feddit.org to c/technology@lemmy.world
22 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] fullsquare@awful.systems 18 points 20 hours ago (3 children)

patched month ago

[–] WhyJiffie@sh.itjust.works 1 points 8 hours ago (1 children)

where exactly? at least a couple hours ago there were no patches yet for any of debian, redhat, suse

[–] fullsquare@awful.systems 2 points 8 hours ago (1 children)
[–] WhyJiffie@sh.itjust.works 1 points 8 hours ago

that commit is misleading. that's the commit of the researcher to their own branch. it was only merged to mainline mid april.

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8

and even that is only for the upcoming 7.0 release. a couple of hours ago trixie was not fixed here, but since then a fixed kernel package was released: https://security-tracker.debian.org/tracker/CVE-2026-31431
also check the openwall link there, where they discuss it was not backported to LTS kernels until very recently.

on suse's part, there are still no fixes: https://www.suse.com/security/cve/CVE-2026-31431.html

[–] missphant@lemmy.blahaj.zone 2 points 17 hours ago* (last edited 17 hours ago)

No patch on 6.12 LTS and by extension Debian.

[–] subOrange@lemmy.world 0 points 19 hours ago (1 children)

Still, my point remains valid.

[–] kescusay@lemmy.world 7 points 19 hours ago

Windows has an overwhelming market share in PCs. Exploitable vulnerabilities that let hackers own it are going to be huge news for as long as that remains the case, because it directly impacts the lives and personal data of more people.

That said, I'm seeing lots of people talk about this particular Linux vulnerability, so I'm not even sure what your gripe is.