From: Venkatasainath Ravikanti <[email protected]>
Cherry-pick haveged upgrades from master to wrynose to fix CVE-2026-41054
(local privilege escalation via command socket).
The socket_handler() function in haveged versions prior to 1.9.21 fails to
terminate execution after rejecting non-root users, allowing unprivileged
local users to execute privileged commands (MAGIC_CHROOT, MAGIC_CLOSE)
through the abstract UNIX socket.
These are direct cherry-picks from master where they have been well-tested.
Built and boot-tested on qemux86-64 (core-image-minimal). Verified:
- haveged 1.9.22 starts/stops correctly
- AIS-31 procedure A and B pass
- Non-root users rejected (exit 255)
- Root command access still works (exit 0)
Li Zhou (1):
haveged: upgrade 1.9.19 -> 1.9.20
Wang Mingyu (1):
haveged: upgrade 1.9.20 -> 1.9.22
.../haveged/{haveged_1.9.19.bb => haveged_1.9.22.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta-oe/recipes-extended/haveged/{haveged_1.9.19.bb =>
haveged_1.9.22.bb} (91%)
--
2.54.0
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#127538):
https://lists.openembedded.org/g/openembedded-devel/message/127538
Mute This Topic: https://lists.openembedded.org/mt/119765163/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-