HarborGuard / CVE
Back to search
HIGHCVE-2026-41054Published Modified CNA suse

CVE-2026-41054: Missing exit out of permission check in haveged could lead to root exploit

In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a negative acknowledgement (`ASCII_NAK`), it **fails to stop execution**. The code proceeds to the `switch` statement, allowing any local unprivileged user to execute privileged commands such as `MAGIC_CHROOT`.

Metrics

CVSS v3.1
7.8
Severity
HIGH
Fixed in
1.9.14-150400.3.11.1
Affected Products
86

Fix available

1.9.14-150400.3.11.11.9.14-150600.11.6.1
Affected packages
  • SUSE / Container suse/sle-micro-rancher/5.3:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Container suse/sle-micro-rancher/5.3:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Container suse/sle-micro-rancher/5.4:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Container suse/sle-micro-rancher/5.4:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Container suse/sle-micro/5.5:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Container suse/sle-micro/5.5:latest
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-Azure
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-Azure
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-EC2
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-EC2
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-BYOS-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-Azure
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-Azure
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-EC2
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-EC2
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-BYOS-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / Image SLES15-SP4-SAP-Hardened-GCE
    < 1.9.14-150400.3.11.1 (from ?)
  • SUSE / SUSE Linux Enterprise Desktop 15 SP7
    < 1.9.14-150600.11.6.1 (from ?)
  • SUSE / SUSE Linux Enterprise Desktop 15 SP7
    < 1.9.14-150600.11.6.1 (from ?)
  • SUSE / SUSE Linux Enterprise Desktop 15 SP7
    < 1.9.14-150600.11.6.1 (from ?)
  • SUSE / SUSE Linux Enterprise High Performance Computing 15 SP7
    < 1.9.14-150600.11.6.1 (from ?)
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References