From 8a3e960bdcc994eb257f92f56375de18b26030ad Mon Sep 17 00:00:00 2001
From: ji_yingjie <2022282210219@whu.edu.cn>
Date: Mon, 17 Jul 2023 12:34:03 +0800
Subject: [PATCH] =?UTF-8?q?CVE-2022-42919=20=E5=AE=89=E5=85=A8=E6=9B=B4?=
 =?UTF-8?q?=E6=96=B0=EF=BC=9ALinux=20specific=20local=20privilege=20escala?=
 =?UTF-8?q?tion?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Lib/multiprocessing/connection.py | 5 -----
 debian/changelog                  | 6 ++++++
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/Lib/multiprocessing/connection.py b/Lib/multiprocessing/connection.py
index 510e4b5..8e2facf 100644
--- a/Lib/multiprocessing/connection.py
+++ b/Lib/multiprocessing/connection.py
@@ -73,11 +73,6 @@ def arbitrary_address(family):
     if family == 'AF_INET':
         return ('localhost', 0)
     elif family == 'AF_UNIX':
-        # Prefer abstract sockets if possible to avoid problems with the address
-        # size.  When coding portable applications, some implementations have
-        # sun_path as short as 92 bytes in the sockaddr_un struct.
-        if util.abstract_sockets_supported:
-            return f"\0listener-{os.getpid()}-{next(_mmap_counter)}"
         return tempfile.mktemp(prefix='listener-', dir=util.get_temp_dir())
     elif family == 'AF_PIPE':
         return tempfile.mktemp(prefix=r'\\.\pipe\pyc-%d-%d-' %
diff --git a/debian/changelog b/debian/changelog
index 7eb085c..a9336bf 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+python3.10 (3.10.7-ok6) yangtze; urgency=medium
+
+ * This prevents Linux CVE-2022-42919: Linux may allow for local privilege escalation attack.
+
+ -- huang-haoran1 <2022282210183@whu.edu.cn>  Mon, 17 Jul 2023 12:29:26 +0800
+
 python3.10 (3.10.7-ok5) yangtze; urgency=medium
 
   * Rebuild for openkylin.
-- 
Gitee