You have to split Things here: Ubuntu and Ubuntu Pro. You get Security Updates - all that You need. The Ubuntu Pro thing is only for an extended Support. And to say that: You shouldn't use Pro on Zorin. When You use Ubuntu directly, You can make that - but only there.
So, yes. It might look confusing. But You get Updates normally on Zorin, too.
if to the problem: CVE-2026-0102 ??
fixed?
That is a Microsoft Edge:Chromium vulnerability!
I never store financial details, address details in any browser - it is just asking for trouble!
I just saw this problem on the redhat forum recently started talking about this.
That's a Question for Microsoft.
just for clarification, i dont want to open a discussion on ubunto pro, my post is showing how to investigate if a machine is patched or not, nothing more.
Ubunto-pro can be an option for long term use and is free for private. If you follow Zorins major relaeses you are done, no additional setup neccessary, no need for pro.
Regards
There is for sure room for add communication, as always in life. On the other side we have be calm while media are hyping these issues (and earning extra money). All these issues need a local user to generate the scrap, so its about us. Thats why I personal do not see this so critical as hyped in a lot of media.
Security patches are delivered with regular Zorin updates and if you follow the major releases yor are setup well. No need to change the distro or going for pro.
I am thankfull of the Zorin Team - they are doing a great job
The Hitchhiker's Guide to the Galaxy teached us "stay calm"
Sorry any for inconviences
And that You should have a fresh Towel and that 42 is the Answer.
Hi!
What is going on with this vulnerability CVE-2026-31431 CopyFail Issue?
When is going to be a fix?
Thanks!
There is a fix you can do yourself:
" For immediate mitigation, block AF_ALG socket creation via seccomp or blacklist the algif_aead module:
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif-aead.conf
rmmod algif_aead 2>/dev/null
For container escape impact, see Part 2." (I could find no Part 2!)
[Source: Copy Fail: 732 Bytes to Root on Every Major Linux Distribution. - Xint]
Also, read this:
In Zorin there was a kmod update:
You don't need to add that manually.
Hello!
How, step by step, can I find if I have the update already installed?
I am applying every update that is arriving to my Zorin OS 18.1 installation, but I am not sure if that one was already offered to me in the last few days.
Thank you in advance.
Look in your file manager if you have that file at /etc/modprobe.d/disable-algif_aead.conf
You can enter the path in the top bar of your file manager or go to other places / filesystem on the left side and then click through the folders: etc > modprobe.d
The update for that fix was two weeks ago. So first look if you have the file.
Thank you, I am new to Linux. Is that the command to copy and paste in to Terminal as a mitigation?
I am going to check that right now.
Thank you kindly.
Hey! yes, I just found it where you said it will be.
Thank you again!
You're welcome! Glad to hear!
Has Z17.3 (still in support) been patched with a fix, same as Z18.1?
Maybe I should flag devs for this question @AZorin @zorink
It should, or not? I have the file at
/etc/modprobe.d/disable-algif_aead.conf
on my Zorin 17.3 Lite system (installed by an update).
Hi!
I apologize for my ignorance, but what does it mean?
Noted. I have 17.3 Core. I will see what I have there when I next boot ZorinOS.