At myshophosting, the security of your websites, email, and data is always our top priority. We take a proactive approach to protecting our customers, and this week was no exception.

Our Response to CVE-2026-31431

Around the same time we were dealing with the cPanel CVE-2026-41940, we became aware of the Linux kernel local privilege escalation vulnerability – CVE-2026-31431 (Copy Fail) affecting all Linux kernels since 2017.

Here’s how we responded:

  • 30th April / 01 May 2026 – Confirmed mitigation recommendations were in place on all servers
  • 04th May 2026 – 12:42 AM AEST: We applied the latest kernel as advised by Cloud Linux

Result: No evidence of any successful compromise was found on any myshophosting server.

We will continue to monitor the situation and will provide follow up blog posts should they be required.

References:

https://blog.cloudlinux.com/cve-2026-31431-copy-fail-kernel-update