CVE-2024-56779

Summary

CVE-2024-56779 is a Linux kernel vulnerability affecting the NFS (Network File System) service, specifically in the nfsd component. The issue arises due to a memory leak problem in the handling of open file requests. When two concurrent nfsd instances try to open the same file from the client to the server, they may both attempt to allocate an nfs4_openowner, leading to a potential memory leak. As a result, attempting to unmount the NFS filesystem using umount -f may fail if some files remain open, causing the rpc_task to be killed but ultimately not all files to be closed properly. This can lead to memory leaks on both the client and server, resulting in issues such as increased memory usage and potential system instability. The vulnerability has been identified in the nfsd_file cache, and objects related to this issue remain in memory during system shutdown.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.