Linux · Linux Kernel · CVE-2024-36898
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue arises when a line is requested with debounce and subsequently reconfigured to enable edge detection, resulting in the allocation of the kfifo to contain edge events being overlooked. This leads to events being written to and read from an uninitialised kfifo, with read events being returned to userspace. The problem is resolved by initialising the kfifo in the case where the software debounce is already active.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.