Use After Free in Gnu Gawk
CVE-2026-40467
Use After Free vulnerability has been found in "io.c" program file of gawk (do_getline_redir() routine). This issue may lead to a crash. It affects gawk in versions 5.4.0 and below.
Vulnerability class: Use-After-Free
Affected products
- Gnu Gawk — versions 0
Weakness classification (CWE)
References
- cvd@cert.pl (patch)
- cvd@cert.pl (third-party-advisory)