{"document":{"category":"csaf_vex","csaf_version":"2.0","distribution":{"tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en-US","notes":[{"category":"legal_disclaimer","text":"THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. KUNBUS RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.","title":"Legal Disclaimer"}],"publisher":{"category":"vendor","contact_details":"product-security@kunbus.com","issuing_authority":"KUNBUS GmbH develops and produces the Revolution Pi Family, Revolution Pi OS and the extension modules for RevPi amongst others. KUNBUS PSIRT is responsible for vulnerability handling across all KUNBUS products and services.","name":"KUNBUS PSIRT","namespace":"https://www.kunbus.com"},"references":[{"summary":"NVD Detail page to the Copy Fail Linux Kernel Vulnerability","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-31431"},{"summary":"Copy Fail Vulnerability Website","url":"https://copy.fail/"},{"category":"self","summary":"URL generated by system","url":"https://psirt.kunbus.com/amber/2026/kunbus-2026-0000005.json"}],"title":"Copy Fail","tracking":{"current_release_date":"2026-05-29T09:00:00.000Z","generator":{"date":"2026-05-29T08:18:50.230Z","engine":{"name":"csaf-cms-backend","version":"1.0.0"}},"id":"Kunbus-2026-0000005","revision_history":[{"date":"2026-05-29T09:00:00.000Z","number":"1.1.0","summary":"Changed TLP sharing Rules to White"}],"status":"final","version":"1.1.0","initial_release_date":"2026-05-29T09:00:00.000Z"}},"product_tree":{"branches":[{"branches":[{"branches":[{"branches":[{"category":"product_version_range","name":"Bookworm <= (03/2026)","product":{"name":"KUNBUS Revolution Pi Revolution Pi OS Bookworm <= (03/2026)","product_id":"CSAFPID-0004"}},{"category":"product_version_range","name":"Bullseye","product":{"name":"KUNBUS Revolution Pi Revolution Pi OS Bullseye","product_id":"CSAFPID-0005"}}],"category":"product_name","name":"Revolution Pi OS"},{"branches":[{"category":"product_version","name":"6.12.85-revpi0-rpi-v8","product":{"name":"KUNBUS Revolution Pi linux-image-revpi-v8 6.12.85-revpi0-rpi-v8","product_id":"CSAFPID-0001"}},{"category":"product_version_range","name":"<= 6.12.73-revpi0-1+deb12+1","product":{"name":"KUNBUS Revolution Pi linux-image-revpi-v8 < 6.12.73-revpi0-1+deb12+1","product_id":"CSAFPID-0002"}}],"category":"product_name","name":"linux-image-revpi-v8"}],"category":"product_family","name":"Revolution Pi"}],"category":"vendor","name":"KUNBUS"}]},"vulnerabilities":[{"cve":"CVE-2026-31431","cwe":{"id":"CWE-669","name":"Incorrect Resource Transfer Between Spheres"},"notes":[{"category":"summary","text":"On 29 April 2026, a high local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-31431 and named \"Copy Fail\", was publicly disclosed.\n\nThe vulnerability affects every mainstream Linux distributions shipping a kernel built since 2017. A public proof-of-concept exploit has been released.","title":"Summary"}],"product_status":{"fixed":["CSAFPID-0001"],"known_affected":["CSAFPID-0004","CSAFPID-0005","CSAFPID-0002"]},"remediations":[{"category":"workaround","date":"2026-05-05T10:00:00.000Z","details":"Deactivate algif_aead.\necho \"install algif_aead /bin/false\" | sudo tee /etc/modprobe.d/disable-algif_aead.conf\nsudo rmmod algif_aead 2>/dev/null || true\nlsmod | grep algif_aead # should return nothing","product_ids":["CSAFPID-0004","CSAFPID-0002","CSAFPID-0005"]},{"category":"vendor_fix","date":"2026-05-11T10:00:00.000Z","details":"Update kernel package linux-image-revpi-v8 to at least Version 6.12.85-revpi0-1+deb12+1","product_ids":["CSAFPID-0004","CSAFPID-0002"],"url":"https://packages.revolutionpi.com/pool/main/l/linux-revpi-v8/linux-image-revpi-v8_6.12.85-revpi0-1+deb12+1_arm64.deb"}],"scores":[{"cvss_v3":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","environmentalScore":7.8,"environmentalSeverity":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"UNCHANGED","temporalScore":7.8,"temporalSeverity":"HIGH","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.1"},"products":["CSAFPID-0004","CSAFPID-0005","CSAFPID-0002"]}],"title":"Copy Fail Linux Kernel Vulnerability"}]}