Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129]) by gbr-app-1.alpinelinux.org (Postfix) with ESMTPS id DCD7A221CC2 for <~alpine/users@lists.alpinelinux.org>; Thu, 30 Apr 2026 18:44:18 +0000 (UTC) Received: from fews01-sea.riseup.net (fews01-sea-pn.riseup.net [10.0.1.109]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by mx1.riseup.net (Postfix) with ESMTPS id 4g633n5cQmzDqQK; Thu, 30 Apr 2026 18:44:05 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=riseup.net; s=squak; t=1777574656; bh=M5o6nhnEdVKFQbub6uU90vir1s51SYQbvTACooiNTQc=; h=Date:Subject:From:To:References:In-Reply-To:From; b=fB4YBqMzrzXCgVZjKyZXo61qSoDhf5k0XqHd00xWzaYZ0hVIwC1BXTHfPmsCZr6Hx NjEfNTKkxByl26TkRjJnVD5q9ryder07c94JQS3TXgjxfkmmwvXcjsFkFMZ4gqr0V4 EBNl/E0QcR0UkgxRtYKe18Pk8A1ySCRT7j8k2Li4= X-Riseup-User-ID: F62BC4CEE83627960808520B7FD32EFAE181EE16DD1ED0054C3F02F23F425C0E Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews01-sea.riseup.net (Postfix) with ESMTPSA id 4g633W1RHRz1yqx; Thu, 30 Apr 2026 18:43:51 +0000 (UTC) Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=UTF-8 Date: Thu, 30 Apr 2026 18:43:50 +0000 Message-Id: Subject: Re: About CVE-2026-31431 ("Copy Fail") on Alpine From: "palisade" To: "Camelia Lavender" , <~alpine/users@lists.alpinelinux.org> References: <59b399b4-7ae8-4bc5-b2c1-d346235ec796@camelia.dev> In-Reply-To: <59b399b4-7ae8-4bc5-b2c1-d346235ec796@camelia.dev> see: https://github.com/theori-io/copy-fail-CVE-2026-31431/issues/4 On Thu Apr 30, 2026 at 5:37 PM UTC, Camelia Lavender wrote: > Hi everyone, > > While applying mitigation recommendations for CVE-2026-31431 on several= =20 > machines, I noticed that I wasn't able to run the exploit on Alpine=20 > systems, even after enabling the algif_aead module. > > Did I miss something while trying to run the exploit on my test machine= =20 > (I got a permission error, specifically) or is there something that=20 > prevents Alpine from being affected? I tried with other setuid binaries,= =20 > such as doas, but did not get results either.