VYPR

haveged

by Haveged

Source repositories

CVEs (1)

  • CVE-2026-41054HigMay 20, 2026
    risk 0.44cvss 7.8epss 0.00

    In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a negative acknowledgement (`ASCII_NAK`), it…