Copy Fail Vulnerability Scanner

Enter Kernel Version

Find your kernel version by running uname -r on your Linux machine, then paste it below to check against our global vulnerability database.

Official Mitigation Actions

KernelCare Live Patching (No Reboot Required)

• Apply Patch: If you use CloudLinux or KernelCare, you can update without rebooting.
  kcarectl --update
• Verify Patch: Check that the CVE has been successfully patched in memory.
  kcarectl --info | grep CVE-2026-31431

Ubuntu Specific Mitigation (kmod update)

• Update kmod: Canonical has released an updated kmod package that automatically blacklists the vulnerable module. This mitigates the vulnerability without requiring a full kernel update.
  sudo apt update && sudo apt install --only-upgrade kmod
• Unload Module: Unload the module to trigger fallback to non-accelerated cryptography (reboot if unloading fails).
  sudo rmmod algif_aead 2>/dev/null

Interim Workarounds

• Disable Module: Disabling the algif_aead kernel module prevents exploitation.
  echo "install algif_aead /bin/true" >> /etc/modprobe.d/disable-algif_aead.conf
  rmmod algif_aead
• Seccomp Policies: In containerized workloads and CI/CD pipelines, use seccomp policies to block the creation of AF_ALG sockets.

Note: MAC mechanisms like SELinux and AppArmor are generally ineffective in default configurations against this exploit.

Patched Versions Reference

If your kernel falls under one of these major branches globally, ensure you are updated to the safe patch level (or newer) to mitigate the vulnerability.

OS Distribution Advisories