Dear Customer,
We have noted a recently disclosed Linux Kernel vulnerability, Copy Fail (CVE-2026-31431). This is a local privilege escalation vulnerability. If an attacker has already obtained regular user access on a server, they may further escalate privileges to root, gaining full control of the system.
This issue primarily involves the AF_ALG / algif_aead functionality in the Linux Kernel. Environments at higher risk include VPS, cloud servers, dedicated servers, virtual hosting, shared hosting, multi-user Linux systems, and servers running services such as cPanel, DirectAdmin, BT Panel, Docker, Kubernetes, and CI runners.
Mitigation and Guidance:
Due to differences in system configurations, you are advised to visit the official channel for the latest mitigation steps and guidance:
https://t.me/ctgserver_offical
Important Notes:
The actual risk depends on your system configuration and usage scenario. Even if temporary mitigation is applied, it is strongly recommended to update the Kernel as soon as possible and restrict execution of untrusted containers or third-party code to reduce potential risks.
