Posted on 05/05/2026 10:18:48 AM PDT by yesthatjallen
In summary:
PCWorld reports that a critical Linux vulnerability called ‘Copy Fail’ (CVE-2026-31431) allows unprivileged users to hijack system privileges by altering cached files.
This straight-line logic flaw affects all major Linux distributions and represents the most severe Linux threat since 2022’s Dirty Pipe vulnerability.
Patches are available in Linux kernel versions 7.0 and 6.19.12, making immediate system updates essential for security.
SNIP
(Excerpt) Read more at pcworld.com ...
Dear FRiends,
We need your continuing support to keep FR funded. Your donations are our sole source of funding. No sugar daddies, no advertisers, no paid memberships, no commercial sales, no gimmicks, no tax subsidies. No spam, no pop-ups, no ad trackers.
If you enjoy using FR and agree it's a worthwhile endeavor, please consider making a contribution today:
Click here: to donate by Credit Card
Or here: to donate by PayPal
Or by mail to: Free Republic, LLC - PO Box 9771 - Fresno, CA 93794
Thank you very much and God bless you,
Jim
In Appleworld you’re giving money to and subsidizing left wing causes though.
It’s amazing something that big and heavy can do that ,LOL
I didn’t know you could get to cached files.
True but I have found Final Cut to be a solid video editor so that’s why I have a Mac.
As with every other tech company.
IT is 99.999999% red-diaper-doper-baby-pinko-commie-lib.
I know this personally as an undercover techie, and i guarantee you they try every trick to ferret out those who aren't full on leftists.
Musk only came out of the closet because he has FU money.
I agree.
Though that means that the only way to not give money to (tech)-leftists is either BSD or Linux.
This is pure SCAREMONGERING.
First they tell you you’re going to die, and at the end they finally get around to telling you that that it was patched in Kernel 5.10.254, WHICH WAS RELEASED IN 2020!!!!!
Which means this isn’t a new vulnerability, it was documented six years ago.
If you’re a propellerhead and you haven’t updated your kernel in six years, you deserve to catch sabre-toothed crotch crickets.
And nowhere does this article mention that:
“Copy Fail is not a remote code execution vulnerability. An attacker needs local execution first, such as a shell account, compromised service, malicious container, or foothold on a CI runner. Once local access exists, the exploit can turn a low-privileged user context into root on an unpatched Linux system.”
Which means you’re only vulnerable if somebody who means to do you harm has physical access to your computer.
Just what Free Republic nereds. More scaremongering.
Right.
Well, slightly “better” software features is what your priority is i guess. It is what it is.
My biggest priority is not some feature here or there. My priority is not making left wing wallets fatter. The moonbats will not get my money.
Life is all about priorities. It is just priorities.
copy fail patch for raspbian
https://search.brave.com/search?q=copy+fail+patch+for+raspbian&summary=1
/bingo
So then all the PC parts companies are red blooded Americans? ;-)
Probably not; but even though Intel, Apple, and AMD are all American companies I don’t hold the blue-haired in very high regard. I use hand me down parts which I usually don’t pay for so I don’t sweat it much. And since Linux is faster I’m better off for it anyways.
Gotta control what I can actually control right?
Nobody ever recommends to me that the most optimum thing I can do is never ask questions, be a lump on a log, just go through the motions. Lie down, accept whatever comes. So since it is never recommended I never do these things.
Gotta control what I can actually control. That is indeed recommended.
Nice thought, but um no.
Someone will use this to justify more H1B visa types and/or mandatory AI tooling.
They each have their strengths and weaknesses, I was mainly referring to the secure side of things with macOS. For my personal use, it has always been the safest and most free of worry, but again, not the right tool for every job ;-)
I would like to have the pricey video technology work. Having a blue screen while doing a long video project has happened more than enough.
My experience with Windows based ones was never that good.
I’ve used KDEN a few times on one of my Linux boxes for lightweight editing some. Not bad.
Ok....newbie Linux user here...I just do ALL updates for my desktop and I’m good, right? (I use Brave, Firefox browsers, have Proton mail)
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.