CVE-2024-35882

SUNRPC: Fix a slow server-side memory leak with RPC-over-TCP

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix a slow server-side memory leak with RPC-over-TCP Jan Schunk reports that his small NFS servers suffer from memory exhaustion after just a few days. A bisect shows that commit e18e157bb5c8 ("SUNRPC: Send RPC message on TCP with a single sock_sendmsg() call") is the first bad commit. That commit assumed that sock_sendmsg() releases all the pages in the underlying bio_vec array, but the reality is that it doesn't. svc_xprt_release() releases the rqst's response pages, but the record marker page fragment isn't one of those, so it is never released. This is a narrow fix that can be applied to stable kernels. A more extensive fix is in the works.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.04%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/1ba1291172f935e6b6fe703161a948f3347400b8 patch mailing list
https://git.kernel.org/stable/c/a2ebedf7bcd17a1194a0a18122c885eb578ee882 patch mailing list
https://git.kernel.org/stable/c/05258a0a69b3c5d2c003f818702c0a52b6fea861 patch mailing list

Frequently Asked Questions

What is the severity of CVE-2024-35882?
CVE-2024-35882 has been scored as a medium severity vulnerability.
How to fix CVE-2024-35882?
To fix CVE-2024-35882, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-35882 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-35882 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-35882?
CVE-2024-35882 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.