Due to the recently announced vulnerability in all Linux (the operating system the vast majority of internet services globally run on) kernel versions since 2017, dubbed Copy Fail (CVE-2026-31431), we made the decision to install updates on all of our Linux servers this morning. Whilst this is outside of our standard maintenance windows and required a phased reboot of every Linux server across our fleet, it was necessary to ensure our servers were patched or otherwise mitigated to prevent exploitation of this extremely serious vulnerability. We have also enabled a mitigation on all Linux servers that updates are not yet available for.
We are not aware of this vulnerability being exploited in the wild, and have security software in place on our Plesk Hosting servers that reduced our vulnerability and the risk of exploitation considerably, but despite this decided to update during the day as a preventative measure given the severity of the vulnerability. We apologise for any disruption this may have caused. We will need to do another batch of updates soon, but will do these during our scheduled maintenance windows to reduce downtime.
Update 20260502:
We can confirm we have now fully patched the above Copy Fail CVE.
