From: Venkatasainath Ravikanti <[email protected]>

Cherry-pick haveged upgrades from master to wrynose to fix CVE-2026-41054
(local privilege escalation via command socket).

The socket_handler() function in haveged versions prior to 1.9.21 fails to
terminate execution after rejecting non-root users, allowing unprivileged
local users to execute privileged commands (MAGIC_CHROOT, MAGIC_CLOSE)
through the abstract UNIX socket.

These are direct cherry-picks from master where they have been well-tested.

Built and boot-tested on qemux86-64 (core-image-minimal). Verified:
- haveged 1.9.22 starts/stops correctly
- AIS-31 procedure A and B pass
- Non-root users rejected (exit 255)
- Root command access still works (exit 0)

Li Zhou (1):
  haveged: upgrade 1.9.19 -> 1.9.20

Wang Mingyu (1):
  haveged: upgrade 1.9.20 -> 1.9.22

 .../haveged/{haveged_1.9.19.bb => haveged_1.9.22.bb}          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta-oe/recipes-extended/haveged/{haveged_1.9.19.bb => 
haveged_1.9.22.bb} (91%)

-- 
2.54.0

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#127538): 
https://lists.openembedded.org/g/openembedded-devel/message/127538
Mute This Topic: https://lists.openembedded.org/mt/119765163/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

  • [oe] [meta-oe][wrynos... Ravikanti, Venkatasainath via lists.openembedded.org

Reply via email to