Ubuntu Security Notices USN-8358-1 USN-8358-1: haveged vulnerability Publication date 1 June 2026 Overview haveged could be made to run programs as an administrator. Releases 26.04 LTS 25.10 24.04 LTS 22.04 LTS Open side navigation Close side navigation Packages Details Update instructions References Packages haveged - userspace entropy daemon Details It was discovered that haveged incorrectly handled credential checks on its control socket. A local attacker could possibly use this issue to execute privileged commands. It was discovered that haveged incorrectly handled credential checks on its control socket. A local attacker could possibly use this issue to execute privileged commands. Update instructions After a standard system update you need to restart haveged to make all the necessary changes. Learn more about how to get the fixes. The problem can be corrected by updating your system to the following package versions: Ubuntu Release Package Version 26.04 LTS resolute haveged – 1.9.19-14ubuntu0.1 libhavege2 – 1.9.19-14ubuntu0.1 25.10 questing haveged – 1.9.19-12+deb13u1build0.25.10.1 libhavege2 – 1.9.19-12+deb13u1build0.25.10.1 24.04 LTS noble haveged – 1.9.14-1ubuntu2+esm1~24.04.1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. libhavege2 – 1.9.14-1ubuntu2+esm1~24.04.1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 22.04 LTS jammy haveged – 1.9.14-1ubuntu1+esm1~22.04.1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. libhavege2 – 1.9.14-1ubuntu1+esm1~22.04.1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. Reduce your security exposure Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines. Get Ubuntu Pro References CVE-2026-41054 CVE-2026-41054