<![CDATA[Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices.]]>Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices.

Ever wanted root access on your router, phone, (tv/portable/etc) media player, washing machine, Jumbo jet, newag train, etc?

If you find a way to run the copyfail POC through somewhere, you'll be root!

Just make sure to try this before the next update gets installed on the device

]]>https://board.circlewithadot.net/topic/3418a36a-a25c-43f7-b882-ac96e4023114/understated-opportunity-copyfail-means-we-get-to-jailbreak-a-whole-new-generation-of-locked-down-linux-devices.RSS for NodeFri, 15 May 2026 01:55:24 GMTThu, 30 Apr 2026 14:51:08 GMT60<![CDATA[Reply to Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices. on Thu, 30 Apr 2026 14:59:46 GMT]]>(I know this requires some way to run the POC as normal user, and that not every kernel build and device has the necessary exploitable bits, but it will still be an available way that you can try; I do suggest trying it simply to see if it works, wouldn't be the first time an (embedded or otherwise) device has weird libraries, oversized kernel builds, and bad protection past the frontend)

]]>https://board.circlewithadot.net/post/https://mastodon.derg.nz/users/anthropy/statuses/116494249935800634https://board.circlewithadot.net/post/https://mastodon.derg.nz/users/anthropy/statuses/116494249935800634Thu, 30 Apr 2026 14:59:46 GMT<![CDATA[Reply to Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices. on Thu, 30 Apr 2026 14:56:39 GMT]]>@anthropy the AF_ALG vector and small payload betrays itself

]]>https://board.circlewithadot.net/post/https://mastodon.social/ap/users/116175731239673526/statuses/116494237636718553https://board.circlewithadot.net/post/https://mastodon.social/ap/users/116175731239673526/statuses/116494237636718553Thu, 30 Apr 2026 14:56:39 GMT<![CDATA[Reply to Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices. on Thu, 30 Apr 2026 14:55:38 GMT]]>@anthropy
Phones and other bespoke things are unlikely to use algif_aead, and as such will not be affected.

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/wdormann/statuses/116494233681414794https://board.circlewithadot.net/post/https://infosec.exchange/users/wdormann/statuses/116494233681414794Thu, 30 Apr 2026 14:55:38 GMT<![CDATA[Reply to Understated opportunity: CopyFail means we get to jailbreak a whole new generation of locked down Linux devices. on Thu, 30 Apr 2026 14:55:11 GMT]]>@anthropy I don't think it will help much:

- On embedded systems, more often than not there's only root / getting access as a regular user is as hard as getting root.

- Custom kernel builds might not have AF_ALG support (though some might, I specifically implemented support for AF_ALG based hashing in casync-nano because we used that on one particular piece of hardware)

]]>https://board.circlewithadot.net/post/https://dgc.social/users/23n27/statuses/116494231918369368https://board.circlewithadot.net/post/https://dgc.social/users/23n27/statuses/116494231918369368Thu, 30 Apr 2026 14:55:11 GMT