mbox series

[meta-oe,wrynose,0/2] haveged: upgrade to 1.9.22 (CVE-2026-41054)

Message ID 20260611191749.2897262-1-venkatasainath.ravikanti@windriver.com
Headers show
Series haveged: upgrade to 1.9.22 (CVE-2026-41054) | expand

Message

Ravikanti, Venkatasainath June 11, 2026, 7:17 p.m. UTC 
From: Venkatasainath Ravikanti <venkatasainath.ravikanti@windriver.com>

Cherry-pick haveged upgrades from master to wrynose to fix CVE-2026-41054
(local privilege escalation via command socket).

The socket_handler() function in haveged versions prior to 1.9.21 fails to
terminate execution after rejecting non-root users, allowing unprivileged
local users to execute privileged commands (MAGIC_CHROOT, MAGIC_CLOSE)
through the abstract UNIX socket.

These are direct cherry-picks from master where they have been well-tested.

Built and boot-tested on qemux86-64 (core-image-minimal). Verified:
- haveged 1.9.22 starts/stops correctly
- AIS-31 procedure A and B pass
- Non-root users rejected (exit 255)
- Root command access still works (exit 0)

Li Zhou (1):
  haveged: upgrade 1.9.19 -> 1.9.20

Wang Mingyu (1):
  haveged: upgrade 1.9.20 -> 1.9.22

 .../haveged/{haveged_1.9.19.bb => haveged_1.9.22.bb}          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta-oe/recipes-extended/haveged/{haveged_1.9.19.bb => haveged_1.9.22.bb} (91%)

Comments

Ravikanti, Venkatasainath June 15, 2026, 8:09 p.m. UTC | #1 
From: Venkatasainath Ravikanti <venkatasainath.ravikanti@windriver.com>

+CC Anuj Mittal (meta-oe maintainer)

Hi Anuj,

Could you review this series when you get a chance? It's a cherry-pick
from master to wrynose, upgrading haveged to 1.9.22 to fix CVE-2026-41054.

Thanks,
Venkatasainath Ravikanti (Venky)