Showing headlines posted by flufferbeer

CVE-2026-31431, colloquially known as "Copy Fail," is a critical logic flaw in the Linux kernel's Cryptographic API (specifically the `algif_aead` module). It allows an unprivileged local user to perform a deterministic, controlled 4-byte write into the read-only page cache of any accessible file on the system. By corrupting the in-memory representation of SUID binaries, an attacker achieves local privilege escalation to the root user and can successfully escape containerized environments.

SCO may have lost a major legal battle with Novell, but it refuses to admit that it may have lost its Linux IP war. When the U.S. District Court in Salt Lake City ruled that Novell, and not SCO, owned Unix's intellectual property, many SCO watchers assumed that it was game over for SCO's long war against Linux and the companies--Novell, IBM and Red Hat--that supported it. Never one to stay down for long, despite numerous setbacks, SCO CEO Daryl McBride insisted in a letter to SCO's partners and customers that it's not down for the count.