IT Alert
Scheduled Service Change - KFS patch release
KFS, Cynergy, eShop, and Cynergy Applications will be down for a patch release this Sunday from 6am to 12pm EST.
Toggle Navigation
Cornell Info
Campus Alerts
Ithaca Weather
Ithaca, New York
66°F / 19°C
The latest information on road closures, construction delays, changes to operating status, or other unusual events on campus.
IT Alert
Scheduled Service Change - PeopleSoft: Windows and Linux OS Patching
PeopleSoft Student Center, Faculty Center, Student Essentials, ePay, Student Admissions, Contributor Relations, Financial Aid, Student Financials, Student Records, Student Employment (PSES) will be unavailable on Sunday, May 17, 2026 at 5am until approximately 10am (ET) for regularly scheduled server maintenance. This maintenance may not require the fully scheduled time.
Special Condition
Campus Rd Milling and Paving, 5/16 - 5/18/2026
IT Alert
Unplanned Outage - Wi-Fi Service Interruption on Ithaca Campus
At 11:01 am on Thursday, May 14, 2026, the Uris node wireless controller rebooted and wireless services were momentarily disrupted in several buildings on the Ithaca campus. Barton, ILR, Catherwood, Comstock, Uris, Campus Store, Schoellkopf, Teagle, Lynah, Bartels, and Wrestling were all affected by the service interruption. Wireless service is functioning now.
Special Condition
Commencement Events May 21-24, 2026
Several College, School, and Departmental events will occur throughout Commencement Weekend, May 21-24, 2026, bringing thousands of guests to campus. On Friday, May 22 and Saturday, May 23, we encourage community members to plan their commute with these events in mind and avoid driving on campus if at all possible. Alternatives to parking on campus include using a park-and-ride, sharing the ride, taking transit, cycling or walking to campus and encouraged staff to work remotely (if approved to do so) to help alleviate the anticipated significant traffic congestion.
- Thursday, May 21 - Senior Convocation for the Class of 2026 at Barton Hall
- Friday, May 22 - College and Department Events
- Significant increase in vehicle volume
- Saturday, May 23 - Two Commencement Ceremonies for the Class of 2026 at Schoellkopf Field
- Change in traffic patterns- Road Closures including most central routes; Feeney Way, Campus Rd, Tower Rd and Hoy Rd.
- Parking restrictions will impact availabilty in support of event guest parking
- Sunday, May 24 - College and Department Events
If you have questions about commuting options, visit parking.cornell.edu.
IT Alert
Scheduled Service Change - Launch of Annual e-List renewal and migration to new Simplelists platform
Lyris is scheduled to retire on Monday, August 3, at noon. Lyris e-list owners will receive migration instructions and will have assistance with moving their e-lists to the Simplelists platform. E-list owners should complete their migrations by Tuesday, June 30. E-list owners with general questions can reach out to the e-list team via the Simplelists Teams channel (https://teams.microsoft.com/l/channel/19%3Ad42911e3f02f46e2bcfa3dbda16c7dd9%40thread.tacv2/Simplelists?groupId=f2572d5d-d463-4ad5-9eae-f1ddade2b955&tenantId=5d7e4366-1b9b-45cf-8e79-b14b27df46e1). If there’s concern about a specific e-list, they can start a conversation with the e-list team via the pre-created ticket(s) they will receive, or they can open a new ticket with the IT Service Desk (https://it.cornell.edu/support).
IT Alert
Security Alert - Kernel Vulnerabilities - Linux (all versions)
A vulnerability known as "CopyFail" (CVE-2026-31431) has been disclosed affecting all versions of Linux released since 2017, allowing an attacker to locally escalate privileges to root using a 732-byte Python script. Peer institutions have reported attacks leveraging this vulnerability.
Update 05/08/2026: A newly disclosed Linux kernel local privilege escalation vulnerability chain, dubbed “Dirty Frag” and assigned CVE-2026-43284 and CVE-2026-43500, enables attackers with local access to obtain root privileges by exploiting flaws in the ESP (IPsec) and RxRPC subsystems. While no official patches are currently available, a public proof-of-concept exists. Organizations should assume the vulnerability is valid and exploitable under certain conditions. This vulnerability is a successor to Copy Fail (CVE-2026-31431).
Update 05/08/2026: Organizations and users should not undertake to "test" these exploits, as this will cause unnecessary alerts and incident response.
References:
https://copy.fail/
https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc
Update 05/08/2026: A newly disclosed Linux kernel local privilege escalation vulnerability chain, dubbed “Dirty Frag” and assigned CVE-2026-43284 and CVE-2026-43500, enables attackers with local access to obtain root privileges by exploiting flaws in the ESP (IPsec) and RxRPC subsystems. While no official patches are currently available, a public proof-of-concept exists. Organizations should assume the vulnerability is valid and exploitable under certain conditions. This vulnerability is a successor to Copy Fail (CVE-2026-31431).
Update 05/08/2026: Organizations and users should not undertake to "test" these exploits, as this will cause unnecessary alerts and incident response.
References:
https://copy.fail/
https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc
Enter a full description of the incident. This will appear in the "see all information" view of this alert.
Enter a full description of the incident. This will appear in the "see all information" view of this alert.
Paving work will close a section of Campus Road between Garden Avenue and the Teagle parking lot beginning Saturday, May 16. The work will include pavement milling on May 16 and new asphalt on May 18. Please drive carefully through the area and follow any posted detours during the closure. Campus Rd is expected to be open on May 19.