cve/2024/CVE-2024-56706.md

### [CVE-2024-56706](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56706)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=8a6fe8f21ec4f049a7b1fe120ad50a5065a9c7a8%3C%204b3bdfa89635db6a53e02955548bd07bebcae233%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

In the Linux kernel, the following vulnerability has been resolved:s390/cpum_sf: Fix and protect memory allocation of SDBs with mutexReservation of the PMU hardware is done at first event creationand is protected by a pair of mutex_lock() and mutex_unlock().After reservation of the PMU hardware the memoryrequired for the PMUs the event is to be installed on isallocated by allocate_buffers() and alloc_sampling_buffer().This done outside of the mutex protection.Without mutex protection two or more concurrent invocations ofperf_event_init() may run in parallel.This can lead to allocation of Sample Data Blocks (SDBs)multiple times for the same PMU.Prevent this and protect memory allocation of SDBs bymutex.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/cku-heise/euvd-api-doc