A high-severity Linux vulnerability, 'Copy Fail' (CVE-2026-31431), enables root privilege escalation across cloud environments and Kubernetes workloads. With a working exploit already in the wild, organizations should act quickly to detect, mitigate, and reduce risk. Source: Microsoft Security Blog.

Security researchers have disclosed details of Dirty Frag, a new unpatched local privilege escalation vulnerability in the Linux kernel that builds upon Copy Fail (CVE-2026-31431), a recently disclosed flaw already under active exploitation. The vulnerability has been reported to Linux kernel maintainers.