Juno Im - Xint

XINT.IO BLOG

Insights from the world's best offensive security researchers

Juno Im

Copy Fail:
From Pod to Host.

Copy Fail: From Pod to Host.

A walkthrough of Copy Fail (CVE-2026-31431) as a container escape primitive: from a 4-byte page cache write to host root on Kubernetes.

Vulnerability ResearchAI for SecurityOpen Source Projects

Copy Fail: 732 Bytes to Root on Every Major Linux Distribution.

Copy Fail: 732 Bytes to Root on Every Major Linux Distribution.

Xint Code disclosed CVE-2026-31431, an authencesn scratch-write bug chaining AF_ALG + splice() into a 4-byte page cache write. A 732-byte PoC gets root on Ubuntu, Amazon Linux, RHEL, SUSE.

AI for Security Vulnerability ResearchOpen Source Projects