1. Forum
  2. FidoNet
  3. alt.os.linux.mint

  • 'Copy fail' bug

    From Axel@3:633/10 to All on Saturday, May 02, 2026 12:24:16

    https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant-in-kernel-since-2017-625492

    https://cert.europa.eu/publications/security-advisories/2026-005/

    https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available


    does this mean Linux has a virus and our computers are compromised and
    our data is at risk? (my knowledge of Linux/LM is very basic)

    --
    Linux Mint 22.3


    --- PyGate Linux v1.5.14
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From Axel@3:633/10 to All on Saturday, May 02, 2026 14:12:55
    rbowman wrote:
    On Sat, 2 May 2026 12:24:16 +1000, Axel wrote:

    https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant-
    in-kernel-since-2017-625492
    https://cert.europa.eu/publications/security-advisories/2026-005/

    https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available


    does this mean Linux has a virus and our computers are compromised and
    our data is at risk? (my knowledge of Linux/LM is very basic)
    If you have updated your system the problem is already fixed for most distros. Even if you have not in most cases for home users the exploit requires physical presence.

    I do all the updates the update manager shows. I'm using Linux Mint 22.3
    (home user only), so it seems I am ok then.

    --
    Linux Mint 22.3


    --- PyGate Linux v1.5.14
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From Lawrence D?Oliveiro@3:633/10 to All on Saturday, May 02, 2026 04:21:49
    On Sat, 2 May 2026 12:24:16 +1000, Axel wrote:

    does this mean Linux has a virus and our computers are compromised
    and our data is at risk? (my knowledge of Linux/LM is very basic)

    The vulnerability just means that anybody who has nonprivileged user
    access to execute arbitrary (nonprivileged) commands on your machine
    can promote themselves to privileged access.

    Do you have multiple users on your machine? Typically, the answer
    would be ?no? -- I imagine it?s just you.

    Even public-facing servers would normally run very restricted apps
    when offering services to all and sundry.

    --- PyGate Linux v1.5.14
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From Axel@3:633/10 to All on Saturday, May 02, 2026 14:26:42
    Lawrence D?Oliveiro wrote:
    On Sat, 2 May 2026 12:24:16 +1000, Axel wrote:

    does this mean Linux has a virus and our computers are compromised
    and our data is at risk? (my knowledge of Linux/LM is very basic)
    The vulnerability just means that anybody who has nonprivileged user
    access to execute arbitrary (nonprivileged) commands on your machine
    can promote themselves to privileged access.

    Do you have multiple users on your machine? Typically, the answer
    would be ?no? -- I imagine it?s just you.

    yes, just myself


    Even public-facing servers would normally run very restricted apps
    when offering services to all and sundry.


    --
    Linux Mint 22.3


    --- PyGate Linux v1.5.14
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From Alan K.@3:633/10 to All on Saturday, May 02, 2026 08:16:12
    On 5/1/26 10:24 PM, Axel wrote:

    https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant-in-kernel-since-2017-625492

    https://cert.europa.eu/publications/security-advisories/2026-005/

    https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available


    does this mean Linux has a virus and our computers are compromised and
    our data is at risk? (my knowledge of Linux/LM is very basic)

    Seems to me the takeaway from the last article is to run this command:

    grep -qE '^algif_aead ' /proc/modules && echo "Affected module is loaded" || echo
    "Affected module is NOT loaded"

    A one liner. In my 22.3 it shows NOT loaded.

    --
    Mint 22.3, Thunderbird 140.10.0esr, Firefox 150.0.1
    Alan K.

    --- PyGate Linux v1.5.14
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)