Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

USN-8441-1 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceUSN-8441-1

USN-8441-1

UNKNOWN

linux-aws-hwe, linux-azure, linux-gcp, linux-hwe, linux-oracle vulnerabilities

Published Jun 17, 2026

Modified 1 weeks ago

Fix available

Details

It was discovered that the Linux kernel algif_aead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. (CVE-2026-31431)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:

Cryptographic API;
Packet sockets; (CVE-2026-31504, CVE-2026-43033, CVE-2026-43077, CVE-2026-43078, CVE-2026-46028)

Affected Packages

linux-aws-hwe

Ubuntu Pro 16.04 LTS

Fixed in:

4.15.0-1192.205~16.04.1

linux-azure

Ubuntu Pro 16.04 LTS

Fixed in:

4.15.0-1201.216~16.04.1

linux-gcp

Ubuntu Pro 16.04 LTS

Fixed in:

4.15.0-1185.202~16.04.1

linux-hwe

Ubuntu Pro 16.04 LTS

Fixed in:

4.15.0-250.262~16.04.1

linux-oracle

Ubuntu Pro 16.04 LTS

Fixed in:

4.15.0-1154.165~16.04.1

References

https://ubuntu.com/security/CVE-2026-31431

https://ubuntu.com/security/CVE-2026-31504

https://ubuntu.com/security/CVE-2026-43033

https://ubuntu.com/security/CVE-2026-43077

https://ubuntu.com/security/CVE-2026-43078

https://ubuntu.com/security/CVE-2026-46028

https://ubuntu.com/security/notices/USN-8441-1

Upstream

UBUNTU-CVE-2026-31431 UBUNTU-CVE-2026-31504 UBUNTU-CVE-2026-43033 UBUNTU-CVE-2026-43077 UBUNTU-CVE-2026-43078 UBUNTU-CVE-2026-46028

Ecosystems

Ubuntu Pro 16.04 LTS

Timeline

PublishedJun 17, 2026

ModifiedJun 17, 2026