The company behind Windows has released information about a flaw that affects millions of Linux systems.
You’re not seeing things: Microsoft has issued a warning that a vulnerability with a CVSS score of 7.8 has been found in the Linux kernel. The vulnerability in question is tagged CVE-2026-31431 and, according to the Cybersecurity and Infrastructure Security Agency (CISA), “This Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.”
The distributions affected are Ubuntu, Red Hat, SUSE, Debian, Fedora, Arch Linux, and Amazon Linux. This could also affect any distribution based on those in the list, which means pretty much every Linux distro that isn’t independent.
On this issue, Red Hat has said, “This local privilege escalation is rated as Important severity. Part of the Linux kernel’s cryptographic interface contains an incorrect in-place operation, where source and destination data mappings differ. This could lead to data integrity issues, including the escalation to root privileges.”
The flaw is found in the Linux kernel cryptographic subsystem’s algif_aead module of AF_ALG. The problem is that a particular optimization has led to the kernel reusing the source memory as the destination during cryptographic operations. What this means is that attackers can take advantage of interactions between the AF_ALG socket interface and a splice() system call.
Currently, active exploitation of the vulnerability is limited to proof-of-concept (PoC) demonstrations. Until patches are released, Microsoft is advising that the affected crypto feature should be disabled, or AF_ALG socket creation should be blocked.
With the rise of Linux vulnerabilities, the kernel developers are now considering adding a component that could help temporarily mitigate against them… in the form of a kill switch.
A new class of problems lets a malicious app pre-configure an invisible privilege update.
Qualys researchers have discovered two local privilege escalation vulnerabilities that allow hackers to gain root privileges on major Linux distributions.
The changelog for kernel 2.6.25.11 includes just a single entry, however, it seems to be so important that the Kernel Stable Team urgently advises users to upgrade the kernel on 64 bit multiple user systems.
Critical vulnerability, now for Android
KDE Linux developers have dropped the Arch User Repository from the build pipeline due to security concerns; other distributions should consider doing the same.
After backlash from the Linux community, California may be backing off on its promise to force all operating systems to verify age, but one platform may still have to comply.
Qualys has discovered a vulnerability in the Linux kernel that can be used to elevate standard user privileges.
Ubuntu Core 26 could be a game-changer for organizations looking for increased security and reliability.
AI is giving Linus Torvalds a headache, but not in the way you might think.
Professional fulfillment tops the list, according to LPI report.
Fedora Hummingbird brings the same approach to the host OS as it does to containers to level up security.
With the rise of Linux vulnerabilities, the kernel developers are now considering adding a component that could help temporarily mitigate against them… in the form of a kill switch.
The latest version of Fedora has been released with gaming support.
The latest Manjaro 26.1 preview has been released with new desktop versions, a new kernel, and more.
—
📚 **Source:** [Read Full Article](http://www.linux-magazine.com/Online/News/Microsoft-Issues-Warning-About-Linux-Vulnerability)
About The Author
