Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > alt.os.linux.mint > #47307 > unrolled thread
| Started by | Axel <none@not.here> |
|---|---|
| First post | 2026-05-02 12:24 +1000 |
| Last post | 2026-05-02 08:16 -0400 |
| Articles | 6 — 4 participants |
Back to article view | Back to alt.os.linux.mint
'Copy fail' bug Axel <none@not.here> - 2026-05-02 12:24 +1000
Re: 'Copy fail' bug rbowman <bowman@montana.com> - 2026-05-02 03:39 +0000
Re: 'Copy fail' bug Axel <none@not.here> - 2026-05-02 14:12 +1000
Re: 'Copy fail' bug Lawrence D’Oliveiro <ldo@nz.invalid> - 2026-05-02 04:21 +0000
Re: 'Copy fail' bug Axel <none@not.here> - 2026-05-02 14:26 +1000
Re: 'Copy fail' bug "Alan K." <alan@invalid.com> - 2026-05-02 08:16 -0400
| From | Axel <none@not.here> |
|---|---|
| Date | 2026-05-02 12:24 +1000 |
| Subject | 'Copy fail' bug |
| Message-ID | <n5l5igFi065U1@mid.individual.net> |
https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant-in-kernel-since-2017-625492 https://cert.europa.eu/publications/security-advisories/2026-005/ https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available does this mean Linux has a virus and our computers are compromised and our data is at risk? (my knowledge of Linux/LM is very basic) -- Linux Mint 22.3
[toc] | [next] | [standalone]
| From | rbowman <bowman@montana.com> |
|---|---|
| Date | 2026-05-02 03:39 +0000 |
| Message-ID | <n5l9v0Fin1cU1@mid.individual.net> |
| In reply to | #47307 |
On Sat, 2 May 2026 12:24:16 +1000, Axel wrote: > https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant- in-kernel-since-2017-625492 > > https://cert.europa.eu/publications/security-advisories/2026-005/ > > https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available > > > does this mean Linux has a virus and our computers are compromised and > our data is at risk? (my knowledge of Linux/LM is very basic) If you have updated your system the problem is already fixed for most distros. Even if you have not in most cases for home users the exploit requires physical presence.
[toc] | [prev] | [next] | [standalone]
| From | Axel <none@not.here> |
|---|---|
| Date | 2026-05-02 14:12 +1000 |
| Message-ID | <n5lbu8Fitu7U1@mid.individual.net> |
| In reply to | #47308 |
rbowman wrote: > On Sat, 2 May 2026 12:24:16 +1000, Axel wrote: > >> https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant- > in-kernel-since-2017-625492 >> https://cert.europa.eu/publications/security-advisories/2026-005/ >> >> https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available >> >> >> does this mean Linux has a virus and our computers are compromised and >> our data is at risk? (my knowledge of Linux/LM is very basic) > If you have updated your system the problem is already fixed for most > distros. Even if you have not in most cases for home users the exploit > requires physical presence. I do all the updates the update manager shows. I'm using Linux Mint 22.3 (home user only), so it seems I am ok then. -- Linux Mint 22.3
[toc] | [prev] | [next] | [standalone]
| From | Lawrence D’Oliveiro <ldo@nz.invalid> |
|---|---|
| Date | 2026-05-02 04:21 +0000 |
| Message-ID | <10t3u4s$1t9cu$2@dont-email.me> |
| In reply to | #47307 |
On Sat, 2 May 2026 12:24:16 +1000, Axel wrote: > does this mean Linux has a virus and our computers are compromised > and our data is at risk? (my knowledge of Linux/LM is very basic) The vulnerability just means that anybody who has nonprivileged user access to execute arbitrary (nonprivileged) commands on your machine can promote themselves to privileged access. Do you have multiple users on your machine? Typically, the answer would be “no” -- I imagine it’s just you. Even public-facing servers would normally run very restricted apps when offering services to all and sundry.
[toc] | [prev] | [next] | [standalone]
| From | Axel <none@not.here> |
|---|---|
| Date | 2026-05-02 14:26 +1000 |
| Message-ID | <n5lco3Fitu7U2@mid.individual.net> |
| In reply to | #47310 |
Lawrence D’Oliveiro wrote: > On Sat, 2 May 2026 12:24:16 +1000, Axel wrote: > >> does this mean Linux has a virus and our computers are compromised >> and our data is at risk? (my knowledge of Linux/LM is very basic) > The vulnerability just means that anybody who has nonprivileged user > access to execute arbitrary (nonprivileged) commands on your machine > can promote themselves to privileged access. > > Do you have multiple users on your machine? Typically, the answer > would be “no” -- I imagine it’s just you. yes, just myself > > Even public-facing servers would normally run very restricted apps > when offering services to all and sundry. -- Linux Mint 22.3
[toc] | [prev] | [next] | [standalone]
| From | "Alan K." <alan@invalid.com> |
|---|---|
| Date | 2026-05-02 08:16 -0400 |
| Message-ID | <10t4puc$24eol$1@dont-email.me> |
| In reply to | #47307 |
On 5/1/26 10:24 PM, Axel wrote:
>
> https://www.itnews.com.au/news/copy-fail-linux-privesc-bug-lay-dormant-in-kernel-since-2017-625492
>
> https://cert.europa.eu/publications/security-advisories/2026-005/
>
> https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available
>
>
> does this mean Linux has a virus and our computers are compromised and
> our data is at risk? (my knowledge of Linux/LM is very basic)
>
Seems to me the takeaway from the last article is to run this command:
grep -qE '^algif_aead ' /proc/modules && echo "Affected module is loaded" || echo
"Affected module is NOT loaded"
A one liner. In my 22.3 it shows NOT loaded.
--
Mint 22.3, Thunderbird 140.10.0esr, Firefox 150.0.1
Alan K.
[toc] | [prev] | [standalone]
Back to top | Article view | alt.os.linux.mint
csiph-web