Security Incident - Preventive Measures on SCITAS Clusters

We would like to inform you that, following the disclosure of a critical Linux kernel vulnerability (CVE-2026-31431), we have taken immediate preventive measures across the SCITAS infrastructure.

As of this morning: - All login frontends have been temporarily disabled to prevent new interactive access. - Running jobs are currently continuing on compute nodes. - We are actively analyzing system logs to assess any potential impact.

At this stage, there is no confirmed evidence of data compromise. However, investigations are ongoing.

We are currently awaiting the availability of official security patches from the operating system vendors. As soon as they are released, we will proceed with their deployment, which will require a coordinated restart of the clusters.

Depending on the outcome of our analysis, additional measures may be taken, including partial or full reinstallation of affected systems if deemed necessary.

We understand the impact this situation may have on your work and appreciate your understanding as we prioritize the security and integrity of the infrastructure.

We will keep you informed as the situation evolves.