Changelog

CVE-2026-31431 (CopyFail) mitigation applied to IBEE server images

IBEE has applied security mitigations for CVE-2026-31431 (CopyFail vulnerability) across all supported Linux server images.

The following operating systems now include this protection by default:

• Debian 12
• Debian 13
• Ubuntu 22.04
• Ubuntu 24.04
• Ubuntu 26.04

The mitigation blacklists the affected kernel module during boot and prevents it from loading automatically.

All newly deployed IBEE Cloud servers now include this protection by default. No customer action is required for new deployments.

Workaround for existing servers

For servers deployed before this update, we recommend manually applying the mitigation by disabling the vulnerable algif_aead kernel module.

Run the following commands as root:

$
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf
$
rmmod algif_aead 2>/dev/null || true

The first command prevents the module from loading during future boots. The second command unloads the module immediately if it is currently active.

Supported distributions

This workaround is applicable to most major Linux distributions, including:

Debian-based

• Debian
• Ubuntu

Red Hat-based

• RHEL
• AlmaLinux
• Rocky Linux
• Oracle Linux

SUSE-based

• SUSE Linux
• openSUSE

Other distributions

• Arch Linux
• Gentoo
• Amazon Linux

Additional information

IBEE continuously monitors critical infrastructure and kernel-level security advisories to ensure rapid mitigation across our cloud platform.

At this time, no exploitation activity related to CVE-2026-31431 has been detected within IBEE infrastructure.