Security: CVE-2026-31431 Linux Kernel Privilege Escalation

A Linux kernel local privilege-escalation vulnerability (CVE-2026-31431) has been disclosed affecting kernels in our compute and bare-metal fleets. A malicious local user could escalate privileges to root. Mitigation underway: - Patched kernel pushed to all dom0 hypervisors and bare-metal hosts. - Customer-facing VMs running our managed kernels will receive the update on their next scheduled reboot window. - Self-managed VMs / bare metal: please apply your distribution's kernel update and reboot at your convenience. We will update this advisory as the rollout progresses across regions. No customer downtime is expected during patching; bare-metal hosts are drained one-at-a-time before the kernel reboot.