3 matches found
BELL-CVE-2026-41054
Bulletin has no description...
SUSE CVE-2026-41054
In src/havegecmd.c, the sockethandler function performs a credential check on the abstract UNIX socket \0/sys/entropy/haveged. However, while it detects if the connecting user is not root cred.uid != 0 and prepares a negative acknowledgement ASCIINAK, it fails to stop execution. The code proceeds...
[slackware-security] haveged
New haveged packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/haveged-1.9.21-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Missing exit out of permission check could lead to...