Security Advisory 2026-04-30
Incident¶
- Date: April 30, 2026
- CVE: CVE-2026-31431 — Copy Fail
- Status: Resolved
Summary¶
On the morning of April 30, we found that we were vulnerable to the Copy Fail exploit. Because the vulnerable code is included with the kernel, we needed to reboot nodes to disable the exploit. We chose to apply the fix quickly and reboot the cluster rather than continue with the exposure.
Known issues¶
- The emergency reboot caused all running jobs to be killed. Resolved