{"id":17359,"date":"2026-04-30T06:13:30","date_gmt":"2026-04-29T21:13:30","guid":{"rendered":"https:\/\/jore2.com\/community-6864-copy-fail-cve-2026-31431\/"},"modified":"2026-04-30T06:13:30","modified_gmt":"2026-04-29T21:13:30","slug":"community-6864-copy-fail-cve-2026-31431","status":"publish","type":"post","link":"https:\/\/jore2.com\/?p=17359","title":{"rendered":"\ub9ac\ub205\uc2a4 \ucee4\ub110\uc758 10 \ub144 \ubb35\uc740 \uc228\uc740 \uacb0\ud568, &#8216;Copy Fail&#8217;\uc774 \uc8fc\ubaa9\ubc1b\ub294 \uc774\uc720"},"content":{"rendered":"<div class=\"jore2-editor-byline\">\n<p><strong>\ud55c\uc11c\uc900<\/strong><\/p>\n<\/div>\n<p>\ucd5c\uadfc \ub9ac\ub205\uc2a4 \uc0dd\ud0dc\uacc4\ub97c \uac15\ud0c0\ud55c \uc0c8\ub85c\uc6b4 \ucde8\uc57d\uc810 &#8216;Copy Fail&#8217;\uc774 \ubcf4\uc548 \uc5c5\uacc4\uc758 \uc774\ubaa9\uc744 \uc9d1\uc911\uc2dc\ud0a4\uace0 \uc788\uc2b5\ub2c8\ub2e4. 2017 \ub144 \uc774\ud6c4 \ucd9c\uc2dc\ub41c \uac70\uc758 \ubaa8\ub4e0 \uc8fc\uc694 \ub9ac\ub205\uc2a4 \ubc30\ud3ec\ud310\uc5d0 \uacf5\ud1b5\uc801\uc73c\ub85c \uc874\uc7ac\ud588\ub358 \uc774 \uacb0\ud568\uc740 CVE-2026-31431 \ub85c \uba85\uba85\ub418\uc5c8\uc73c\uba70, \uae30\uc874 \ub85c\uceec \uad8c\ud55c \uc0c1\uc2b9(LPE) \ucde8\uc57d\uc810\ub4e4\uc774 \uac00\uc9c4 \ubcf5\uc7a1\ud55c \uc804\uc81c \uc870\uac74\ub4e4\uc744 \ubaa8\ub450 \uc0dd\ub7b5\ud588\ub2e4\ub294 \uc810\uc5d0\uc11c \uc8fc\ubaa9\ubc1b\uc2b5\ub2c8\ub2e4. \ub300\ubd80\ubd84\uc758 \uae30\uc874 \ucde8\uc57d\uc810\uc774 \ud2b9\uc815 \ucee4\ub110 \ubc84\uc804\uc758 \uc624\ud504\uc14b \ucc28\uc774\ub098 \uacbd\uc7c1 \uc870\uac74\uc744 \ud544\uc694\ub85c \ud588\ub358 \uac83\uacfc \ub2ec\ub9ac, \uc774 \uacb0\ud568\uc740 \ub2e8\uc21c\ud55c \ub17c\ub9ac \uc624\ub958\uc5d0 \uae30\ubc18\ud558\uc5ec 732 \ubc14\uc774\ud2b8\uc758 \ud30c\uc774\uc36c \uc2a4\ud06c\ub9bd\ud2b8 \ud558\ub098\ub85c\ub3c4 \ubaa8\ub4e0 \ubc30\ud3ec\ud310\uc5d0\uc11c root \uad8c\ud55c\uc744 \ud68d\ub4dd\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\uc774 \ucde8\uc57d\uc810\uc758 \ud575\uc2ec\uc740 \ucee4\ub110 \uc554\ud638\ud654 API\uc778 AF_ALG \uc640 splice() \ud568\uc218\uac00 \uacb0\ud569\ub41c \ubc29\uc2dd\uc5d0 \uc788\uc2b5\ub2c8\ub2e4. \uc774 \uc870\ud569\uc740 \ub514\uc2a4\ud06c\uc5d0 \uae30\ub85d\ub41c \ud30c\uc77c \ubb34\uacb0\uc131 \uac80\uc0ac \ub3c4\uad6c\ub97c \uc6b0\ud68c\ud558\uc5ec \ud398\uc774\uc9c0 \uce90\uc2dc\uc5d0 4 \ubc14\uc774\ud2b8\ub97c silently \ud558\uac8c \ub36e\uc5b4\uc4f0\uac8c \ub9cc\ub4ed\ub2c8\ub2e4. \ubc1c\uacac\uc790 Xint Code \uac00 \ubc1d\ud78c \ubc14\uc5d0 \ub530\ub974\uba74, \uc774 \uacf5\uaca9\uc740 \ub124\ud2b8\uc6cc\ud06c \uc811\uadfc\uc774\ub098 \ub514\ubc84\uae45 \uae30\ub2a5 \uc5c6\uc774\ub3c4 \ube44\uad8c\ud55c \uc0ac\uc6a9\uc790\uc758 \ub85c\uceec \uacc4\uc815\ub9cc \uc788\uc73c\uba74 \uc2e4\ud589 \uac00\ub2a5\ud558\uba70, 2017 \ub144\ubd80\ud130 \ud328\uce58\uac00 \uc801\uc6a9\ub418\uae30 \uc804\uae4c\uc9c0 \ube4c\ub4dc\ub41c \ucee4\ub110\uc774\ub77c\uba74 \uc608\uc678 \uc5c6\uc774 \uc601\ud5a5\uc744 \ubc1b\uc2b5\ub2c8\ub2e4. \uc774\ub294 \ub2e8\uc77c \ud14c\ub10c\ud2b8 \ud658\uacbd\ubfd0\ub9cc \uc544\ub2c8\ub77c \uacf5\uc720\ub41c \ucee4\ub110 \uc704\uc5d0\uc11c \uc2e4\ud589\ub418\ub294 \ucee8\ud14c\uc774\ub108, CI\/CD \ud30c\uc774\ud504\ub77c\uc778\uc758 \ube4c\ub4dc \uc11c\ubc84, \uadf8\ub9ac\uace0 \uc11c\ubc84\ub9ac\uc2a4 \ud568\uc218 \ub4f1 \ub2e4\uc591\ud55c \ud604\ub300\uc801 \uc778\ud504\ub77c \ud658\uacbd\uc5d0\uc11c \ud14c\ub10c\ud2b8 \uac04 \uacbd\uacc4\ub97c \ubb34\ub108\ub728\ub9b4 \uc218 \uc788\uc74c\uc744 \uc758\ubbf8\ud569\ub2c8\ub2e4.<\/p>\n<p>\ud558\uc9c0\ub9cc \uc774 \ubc1c\uacac\uc774 \ub728\uac70\uc6b4 \uac10\uc790\ub85c \ub5a0\uc624\ub978 \ub370\uc5d0\ub294 \uae30\uc220\uc801 \ub180\ub77c\uc6c0 \uc774\uc0c1\uc73c\ub85c \ub300\uc751 \uacfc\uc815\uc5d0\uc11c\uc758 \ud63c\ub780\ub3c4 \ud55c\ubaab\ud588\uc2b5\ub2c8\ub2e4. \uc77c\ubd80 \ucee4\ubba4\ub2c8\ud2f0\uc5d0\uc11c\ub294 \uacf5\uac1c \uc790\ub8cc\uc5d0 \uc5b8\uae09\ub41c RHEL 14.3 \uc774\ub77c\ub294 \ubc84\uc804\uc774 \ud604\uc7ac \uc874\uc7ac\ud558\uc9c0 \uc54a\ub294 \ubc84\uc804\uc774\ub77c\ub294 \uc810\uc5d0\uc11c \ubc1c\ud45c \uacfc\uc815\uc5d0 \ud63c\uc120\uc774 \uc788\uc5c8\uc74c\uc744 \uc9c0\uc801\ud558\uae30\ub3c4 \ud588\uc2b5\ub2c8\ub2e4. \uc2e4\uc81c\ub85c \ub808\ub4dc\ud587\uc744 \ube44\ub86f\ud55c \uc8fc\uc694 \ubca4\ub354\ub4e4\uc740 \uc774 \ucde8\uc57d\uc810\uc744 &#8216;\uc911\ub4f1\ub3c4(Moderate)&#8217;\ub85c \ubd84\ub958\ud558\uace0 \ud328\uce58\ub97c \ubbf8\ub8e8\ub294 \ubaa8\uc2b5\uc744 \ubcf4\uc5ec, \uae30\uc220\uc801 \ud30c\uae09\ub825\uacfc \uc2e4\uc81c \ub300\uc751 \uc18d\ub3c4 \uc0ac\uc774\uc758 \uad34\ub9ac\uc5d0 \ub300\ud55c \ub17c\uc758\ub97c \ub0b3\uc558\uc2b5\ub2c8\ub2e4. \ud2b9\ud788 \ub370\ube44\uc548, \uc544\uce58, \ud398\ub3c4\ub77c \ub4f1 \ub2e4\uc591\ud55c \ubc30\ud3ec\ud310\uc5d0\uc11c \ub3d9\uc77c\ud55c \ub3d9\uc791\uc744 \ubcf4\uc784\uc5d0\ub3c4 \ubd88\uad6c\ud558\uace0, \uac01 \ubc30\ud3ec\ud310\uc758 \ud328\uce58 \uc815\ucc45\uc774 \ub2ec\ub77c \ubcf4\uc548 \uad00\ub9ac\uc790\ub4e4\uc758 \uc6b0\ub824\ub97c \ud0a4\uc6b0\uace0 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\uc55e\uc73c\ub85c \uc8fc\ubaa9\ud574\uc57c \ud560 \uc810\uc740 \uc774 \ub2e8\uc21c\ud55c \ub17c\ub9ac \uacb0\ud568\uc774 \uc5b4\ub5bb\uac8c \uc2e4\uc81c \uc6b4\uc601 \ud658\uacbd\uc5d0\uc11c \uc7ac\ud574\uc11d\ub420\uc9c0\uc785\ub2c8\ub2e4. \ub2e8\uc21c\ud55c \ub85c\uceec \uad8c\ud55c \uc0c1\uc2b9\uc744 \ub118\uc5b4, \uacf5\uc720\ub41c \ud398\uc774\uc9c0 \uce90\uc2dc\ub97c \ud1b5\ud574 \ud638\uc2a4\ud2b8 \uc804\uccb4\ub97c \uc7a5\uc545\ud560 \uc218 \uc788\ub294 \uac00\ub2a5\uc131\uc740 \ud074\ub77c\uc6b0\ub4dc \ub124\uc774\ud2f0\ube0c \ud658\uacbd\uc758 \ubcf4\uc548 \uc124\uacc4\uc5d0 \uadfc\ubcf8\uc801\uc778 \uc9c8\ubb38\uc744 \ub358\uc9d1\ub2c8\ub2e4. \ud2b9\ud788 GitHub Actions \ub098 \uc820\ud0a8\uc2a4 \uc5d0\uc774\uc804\ud2b8\ucc98\ub7fc \uc2e0\ub8b0\ud560 \uc218 \uc5c6\ub294 \ucf54\ub4dc\uac00 \uc2e4\ud589\ub418\ub294 \ud658\uacbd\uc5d0\uc11c\ub294 \uc774 \ucde8\uc57d\uc810\uc774 \ud14c\ub10c\ud2b8 \uac04 \uaca9\ub9ac\ub97c \ubb34\ub825\ud654\ud560 \uc218 \uc788\ub294 \uac15\ub825\ud55c \ubb34\uae30\uac00 \ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uac01 \ubc30\ud3ec\ud310\uc774 \uc774 \uacb0\ud568\uc5d0 \ub300\ud55c \ud328\uce58\ub97c \uc5b4\ub5bb\uac8c \uc801\uc6a9\ud560\uc9c0, \uadf8\ub9ac\uace0 &#8216;algif_aead&#8217; \ubaa8\ub4c8\uc744 \ube44\ud65c\uc131\ud654\ud558\ub294 \ub4f1\uc758 \uc6b0\ud68c \ubc29\uc548\uc774 \uc2e4\uc81c \uc6b4\uc601\uc5d0 \uc5b4\ub5a4 \uc601\ud5a5\uc744 \ubbf8\uce60\uc9c0 \uc9c0\ucf1c\ubcf4\ub294 \uac83\uc774 \uc911\uc694\ud569\ub2c8\ub2e4.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\uacbd\uc7c1 \uc870\uac74 \uc5c6\uc774\ub3c4 \ubaa8\ub4e0 \ub9ac\ub205\uc2a4 \ubc30\ud3ec\ud310\uc744 root \uad8c\ud55c\uc73c\ub85c \ud0c8\ucde8\ud560 \uc218 \uc788\ub294 \ub2e8\uc21c\ud55c \ub17c\ub9ac \uacb0\ud568 CVE-2026-31431 \uc774 \ubc1c\uacac\ub418\uba74\uc11c, \ubcf4\uc548 \uc804\ubb38\uac00\ub4e4\uacfc \uc2dc\uc2a4\ud15c \uad00\ub9ac\uc790 \uc0ac\uc774\uc5d0\uc11c \ud070 \ud30c\uc7a5\uc744 \uc77c\uc73c\ud0a4\uace0 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n","protected":false},"author":3,"featured_media":17358,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[406],"tags":[12529,12530,12528,12531,10218],"class_list":["post-17359","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-406","tag-cve-2026-31431","tag-12530","tag-12528","tag-12531","tag-10218"],"featured_image_urls":{"full":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og.png",1200,630,false],"thumbnail":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-150x150.png",150,150,true],"medium":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-300x158.png",300,158,true],"medium_large":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-768x403.png",640,336,true],"large":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-1024x538.png",640,336,true],"1536x1536":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og.png",1200,630,false],"2048x2048":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og.png",1200,630,false],"morenews-large":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-825x575.png",825,575,true],"morenews-medium":["https:\/\/jore2.com\/wp-content\/uploads\/2026\/04\/og-590x410.png",590,410,true]},"author_info":{"info":["\ud55c\uc11c\uc900"]},"category_info":"<a href=\"https:\/\/jore2.com\/?cat=406\" rel=\"category\">\uc694\uc998\ub728\ub294\uc18c\uc2dd<\/a>","tag_info":"\uc694\uc998\ub728\ub294\uc18c\uc2dd","comment_count":"0","_links":{"self":[{"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/posts\/17359","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/jore2.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=17359"}],"version-history":[{"count":0,"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/posts\/17359\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jore2.com\/index.php?rest_route=\/wp\/v2\/media\/17358"}],"wp:attachment":[{"href":"https:\/\/jore2.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=17359"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jore2.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=17359"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jore2.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=17359"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}