Tag
A use-after-free vulnerability in the DRM GEM core ioctl DRM_IOCTL_GEM_CHANGE_HANDLE allows unprivileged local users with render node access to escalate to root. The bug was fixed in the Linux kernel mainline in May 2026.
Copy Fail 2 is a proof-of-concept exploit for an unprivileged Linux Local Privilege Escalation (LPE) vulnerability in the kernel's xfrm subsystem, allowing attackers to gain root access on modern distributions.