Linux Kernel Privilege Escalation to Root Vulnerabilities Tracker

Cybersecurity uses this top-level document to track the Linux LPE vulnerabilities.

The following KB documents describe the variants, contain links to any proof-of-concept exploits, and links to mitigation guidance:

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - Copy Fail (CVE-2026-31431) last updated 5/20/26

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - Dirty Frag/Copy Fail 2/Fragnesia last updated 5/20/26

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - Dirty Decrypt (CVE-2026-31635) last updated 5/20/26

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - PinTheft last updated 5/20/26

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - CIFSwitch last updated 5/28/26

Cybersecurity Announcement: Linux Kernel Privilege Escalation to Root Vulnerability - "pedit COW" (CVE-2026-46331) added 6/30/26



Keywords:
copyfail Linux local privilege escalation LPE vulnerabilities copy fail CVE-2026-31431 CVE-2026-43284 CVE-2026-43500 CVE-2026-31635 
Doc ID:
161417
Owned by:
Jamie G. in Cybersecurity Testing and Cyber Defense
Created:
2026-05-19
Updated:
2026-07-01
Sites:
Cybersecurity Testing and Cyber Defense, Cybersecurity Vulnerablity Management