Copy Fail (CVE-2026-31431) — Kubernetes Container Escape PoC

📰

Copy Fail (CVE-2026-31431) — Kubernetes Container Escape PoC

Reddit r/kubernetes·u/Beneficial-Carry8811·about 1 month ago

#payload #kernel #cache #kube #article #discussion

Reading 0:00

15s threshold

Copy Fail (CVE-2026-31431) — Kubernetes Container Escape PoC FROM: [https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC](https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC) # Copy Fail (CVE-2026-31431) — Kubernetes Container Escape PoC A proof-of-concept demonstrating how a **fully unprivileged container** can achieve **node-level code execution** on Kubernetes by exploiting the CVE-2026-31431 Linux kernel page-cache corruption bug through shared container image layers. > **Disclaimer:** This repository is published for educational and defensive purposes only. Use it exclusively on systems you own or have explicit authorization to test. ## Background CVE-2026-31431 ("Copy Fail") is a Linux kernel vulnerability in the page-cache Copy-on-Write (CoW) path. An `AF_ALG` splice race allows an unprivileged process to corrupt the page-cache pages of a **read-only** file.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free account Log in

Menu

Copy Fail (CVE-2026-31431) — Kubernetes Container Escape PoC