TL;DR

Python 3.9, 3.10, and 3.11.0rc2 on Linux may allow for a local privilege escalation attack in a non-default configuration when code uses themultiprocessing module and configuresmultiprocessing to use theforkserver start method.

Details

The Pythonmultiprocessing library, when used with theforkserver start method on Linux, allows Python pickles to be deserialized from any user in the same machine local network namespace, which in many system configurations means any user on the same machine. Pickles can execute arbitrary code. Thus, this allows for local user privilege escalation to the user that any Python multiprocessingforkserver process is running as.

The forkserver start method for multiprocessing is not the default start method. This issue is Linux specific because only Linux supports abstract namespace sockets.

CPython before 3.9 does not make use of Linux abstract namespace sockets by default.

This issue has been assignedCVE-2022-42919.

Credit: This issue was discovered by Devin Jeanpierre (@ssbr) of Google.

Are Python 3.7 and 3.8 affected?

Not by default.

Support for users manually specifying an abstract namespace AF_UNIX socket was addedas a bugfix in 3.7.8 and 3.8.3, but users would need to make specific uncommonmultiprocessing API calls specifying their ownforkserver control socket path in order to do that in CPython before 3.9.

What about code that explicitly asks for an abstract socket?

Applications found to be making the uncommonmultiprocessing API calls to explicitly use Linux abstract namespace sockets with aforkserver are believed to be rare and should have their own specific security issues filed.

Workarounds

From Python application or library code:

importmultiprocessing.utilmultiprocessing.util.abstract_sockets_supported=False

This disables their use by default. You must execute that before anything else in your process has started making use of multiprocessing.

If you can patch your CPython runtime itself:

Remove these two lines from CPython'sLib/multiprocessing/connection.py:

-        if util.abstract_sockets_supported:-            return f"\0listener-{os.getpid()}-{next(_mmap_counter)}"

(that is what our security bug fix commits do).

Or, similar to the application level fix, editLib/multiprocessing/util.py to always set:

- abstract_sockets_supported = _platform_supports_abstract_sockets()+ abstract_sockets_supported = False

Alternatives to avoid the problem

If your Linux Python application can be switched from multiprocessing's.set_start_method("forkserver") to a start method such as"spawn" that will also avoid this issue.

Scope of the bug fixes

We are changing the default in Python 3.9 and higher to not use the Linux abstract namespace sockets by default.

It would be ideal to add authentication to theforkserver control socket so that it isn't even relying on filesystem permissions. This is a more complicated change and is expected to be done as a feature in 3.12.

Tasks

• Cherry pick the 3.11 commit to the 3.11.0 release.4686d77
• Merge the 3.9 PR.[3.9] gh-97514: Don't use Linux abstract sockets for multiprocessing (GH-98501) #98504
• After 3.11.0 is out, make sure 3.11.1 won't have a duplicate news entry about this due to the branch vs 3.11.0 release branch
• Push@gpshead 's PR(s) for proper forkserver socket authentication in 3.12.

Linked PRs

• PR:gh-97514: Authenticate the forkserver control socket. #99309