<![CDATA[Fresh gist: mitigating CVE-2026-31431 ("Copy Fail") on RHEL 8/9/10 with a tiny Ansible playbook.]]>Fresh gist: mitigating CVE-2026-31431 ("Copy Fail") on RHEL 8/9/10 with a tiny Ansible playbook.

It blacklists algif_aead via a kernel boot arg (initcall_blacklist=algif_aead_init), reboots only when needed, and asserts the mitigation actually stuck after reboot. Idempotent & safe to re-run.

Cookie monster!

favicon

(codeberg.org)

]]>https://board.circlewithadot.net/topic/c2bdb23d-9ce5-48de-b006-ec962e11de58/fresh-gist-mitigating-cve-2026-31431-copy-fail-on-rhel-8-9-10-with-a-tiny-ansible-playbook.RSS for NodeThu, 14 May 2026 21:40:13 GMTFri, 01 May 2026 10:10:45 GMT60