XINT.io, with the help of AI, just demonstrated a 732 byte exploit that gets root on every major Linux distribution shipped since 2017. This is a flaw that went unnoticed for almost a decade now. You can only imagine how many more AI is going to help people find.

Copy Fail (CVE-2026-31431) is a logic bug in the Linux kernel’s authencesn cryptographic template. It lets an unprivileged local user trigger a deterministic, controlled 4-byte write into the page cache of any readable file on the system. A single 732-byte Python script can edit a setuid binary and obtain root on essentially all Linux distributions shipped since 2017.