Context

A security vulnerability has been identified in the Linux kernel, referenced as CVE-2026-31431 (CVSS 7.8) and commonly known as Copy Fail.
It affects the algif_aead cryptographic module (userspace interface of the kernel crypto API).

This vulnerability allows local privilege escalation only.
Prior access (shell) to the server is required to exploit it.

What does this mean for GoFAST?

GoFAST uses the AlmaLinux operating system, where the algif_aead module is compiled directly into the kernel (builtin).
As of May 1, 2026, AlmaLinux has published a patched kernel in its repositories.
GoFAST updates including this fix are being deployed following our standard security procedure.

References

• https://copy.fail/
• https://xint.io/blog/copy-fail-linux-distributions
• https://nvd.nist.gov/vuln/detail/CVE-2026-31431
• https://almalinux.org/blog/2026-05-01-cve-2026-31431-copy-fail/
• https://errata.almalinux.org/9/ALSA-2026-A002.html