Advisory on CVE-2026-31431

On April 30, 2026, the Linux kernel security team disclosed a vulnerability in the Linux kernel affecting the cryptographic API subsystem.

This vulnerability, known as Copy Fail, is a local privilege escalation flaw in the Linux kernel. A logic bug allows an unprivileged local user to gain root access on affected systems without requiring memory corruption or race conditions. A working public exploit is available that functions across major Linux distributions.

CVE-2026-31431 is assigned to this vulnerability and classified as High severity with a CVSS score of 7.8 by the Linux kernel CVE team.

Impacted IONOS CLOUD products

Product Ranges

Product

Impacted

Mitigated

Patch Status

Compute

Compute Engine (vCPU)

Not Applicable

Compute

Compute Engine (Dedicated Core)

Not Applicable

Container

Managed Kubernetes

Yes

In Progress

Storage

Block Storage (HDD or SSD)

Not Applicable

Storage

IONOS CLOUD Object Storage

Yes

In Progress

Risk on IONOS CLOUD user environment

Users running Linux-based virtual machines on IONOS CLOUD infrastructure must assess whether their guest operating systems are running vulnerable kernel versions. A local user on an affected guest system may be able to escalate privileges to root. IONOS CLOUD managed services that are listed as impacted are being actively remediated; IONOS CLOUD infrastructure manages access controls to those environments and there is no known direct exposure to end users from the affected services at this time.

What action has IONOS CLOUD taken to mitigate the vulnerability?

IONOS CLOUD is aware of this vulnerability and has already initiated the required steps to mitigate this vulnerability. For Compute Engine infrastructure, our custom kernel configuration does not include the affected module, and those systems are not vulnerable. For impacted managed services, we are actively applying vendor-supplied patches and have confirmed that the affected kernel modules are not loaded on critical infrastructure nodes pending full remediation.

We will provide necessary updates as we learn more.

What action can you take to mitigate the vulnerability?

If you run Linux-based virtual machines on IONOS CLOUD, apply the latest security updates from your Linux distribution vendor as soon as they become available. Patched packages have been released by Ubuntu, Red Hat, Debian, SUSE, and Fedora. Refer to your distribution's security tracker for patch availability. If a patch is not yet available for your kernel version, you can reduce risk by preventing the affected kernel module from loading until a patch is applied.

How can I get help?

If you have further questions or concerns about this vulnerability, contact IONOS CLOUD Support.

PreviousAdvisory on CVE-2026-43284 NextVulnerability Register - 2025

Last updated 12 days ago

Was this helpful?