CVE-2026-31431 is a logic bug in the Linux kernel's crypto API that gives any local user root through a 732-byte Python script. No race conditions, no kernel offsets, no recompilation. Same script, every distro, every time. It's been sitting there for nine years.
Security researcher focused on web application vulnerabilities, exploit development,
and responsible disclosure. Currently seeking internship opportunities in offensive security.