{"id":16345,"date":"2026-05-06T09:04:18","date_gmt":"2026-05-06T16:04:18","guid":{"rendered":"https:\/\/mattfife.com\/?p=16345"},"modified":"2026-05-04T09:09:16","modified_gmt":"2026-05-04T16:09:16","slug":"ai-assisted-security-findings-are-coming-in","status":"publish","type":"post","link":"https:\/\/mattfife.com\/?p=16345","title":{"rendered":"AI assisted security findings are coming in"},"content":{"rendered":"\n

XINT.io, with the help of AI, just demonstrated a 732 byte exploit that gets root on every major Linux distribution shipped since 2017<\/a>. This is a flaw that went unnoticed for almost a decade now. You can only imagine how many more AI is going to help people find.<\/p>\n\n\n\n

Copy Fail<\/em><\/a>\u00a0(CVE-2026-<\/em>31431) is a logic bug in the Linux kernel’s\u00a0authencesn\u00a0cryptographic template. It lets an unprivileged local user trigger a deterministic, controlled 4-byte write into the page cache of any readable file on the system. A single 732-byte Python script can edit a setuid binary and obtain root on essentially all Linux distributions shipped since 2017.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

XINT.io, with the help of AI, just demonstrated a 732 byte exploit that gets root on every major Linux distribution shipped since 2017. This is a flaw that went unnoticed for almost a decade now. You can only imagine how many more AI is going to help people find. Copy Fail\u00a0(CVE-2026-31431) is a logic bug in the Linux kernel’s\u00a0authencesn\u00a0cryptographic template. It lets an unprivileged local user trigger a deterministic, controlled 4-byte write into the page cache of any readable file…<\/p>\n

Read More Read More<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[9,5],"tags":[],"class_list":["post-16345","post","type-post","status-publish","format-standard","hentry","category-cool","category-technical"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4WECr-4fD","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/posts\/16345","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/mattfife.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=16345"}],"version-history":[{"count":1,"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/posts\/16345\/revisions"}],"predecessor-version":[{"id":16346,"href":"https:\/\/mattfife.com\/index.php?rest_route=\/wp\/v2\/posts\/16345\/revisions\/16346"}],"wp:attachment":[{"href":"https:\/\/mattfife.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=16345"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mattfife.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=16345"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mattfife.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=16345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}