Major Linux distributions CIFSwitch fixes
Security Patch Release
Summary
Hide ▲
Show ▼
Major Linux distributions rolled out fixes for the CIFSwitch security defect, reducing exposure to a root-privilege escalation path in the Linux kernel CIFS subsystem. The patch rollout covered multiple distributions and landed earlier this month. The defect involved the kernel’s CIFS handling and the cifs-utils helper used for authentication. Systems shipping the helper by default, or with it installed manually, faced the most direct exposure before the fixes arrived.
Related Happenings
Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)
Security Patch Release
First: 11.05.2026 17:30
Last: 11.05.2026 17:30
Sources 1
About this happening:
**Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...
Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)
Security Patch ReleaseAbout this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...
CISA KEV action for CVE-2026-31431 and FCEB remediation
Public Sector Action
First: 03.05.2026 09:26
Last: 03.05.2026 09:26
Sources 1
About this happening:
CISA added **CVE-2026-31431** to its **KEV catalog**, putting **Federal Civilian Executive Branch (FCEB)** agencies on notice to remediate an actively exploited Linux privilege-es...
CISA KEV action for CVE-2026-31431 and FCEB remediation
Public Sector ActionAbout this happening: CISA added **CVE-2026-31431** to its **KEV catalog**, putting **Federal Civilian Executive Branch (FCEB)** agencies on notice to remediate an actively exploited Linux privilege-es...
Linux kernel security update for Copy Fail (CVE-2026-31431)
Security Patch Release
First: 30.04.2026 16:54
Last: 30.04.2026 16:54
Sources 1
About this happening:
**Linux kernel** maintainers have fixed **CVE-2026-31431** and are rolling out updates to close a **local privilege escalation** flaw that lets an unprivileged attacker gain **roo...
Linux kernel security update for Copy Fail (CVE-2026-31431)
Security Patch ReleaseAbout this happening: **Linux kernel** maintainers have fixed **CVE-2026-31431** and are rolling out updates to close a **local privilege escalation** flaw that lets an unprivileged attacker gain **roo...
Linux distributions mitigation advisories for CVE-2026-31431
Advisory/Mitigation
First: 30.04.2026 12:24
Last: 30.04.2026 12:24
Sources 1
About this happening:
Multiple **Linux distributions** released advisories for **CVE-2026-31431**, adding mitigation guidance for a **Linux kernel local privilege escalation** that can let an unprivile...
Linux distributions mitigation advisories for CVE-2026-31431
Advisory/MitigationAbout this happening: Multiple **Linux distributions** released advisories for **CVE-2026-31431**, adding mitigation guidance for a **Linux kernel local privilege escalation** that can let an unprivile...
Timeline
-
01.06.2026 14:19 2 articles · 6h ago
Major Linux distributions roll out CIFSwitch fixes
Mitigation Patch UpdateEarlier this month, major Linux distributions rolled out fixes for CIFSwitch, a 19-year-old Linux kernel vulnerability in the CIFS subsystem and cifs-utils that lets low-privileged users obtain root-level privileges through `request_key`, `cifs.upcall`, and namespace handling. The remediation reduced exposure across affected Linux Mint, CentOS, Rocky Linux, Kali Linux, AlmaLinux, and SLES SAP systems, including builds that ship `cifs-utils` by default or require manual installation.
Show sources
- 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access — www.securityweek.com — 01.06.2026 14:19
- 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access — www.securityweek.com — 01.06.2026 14:19