PT-2026-57813 · Gnu · Gawk
Marcin Wyczechowski
+1
·
Published
2026-07-13
·
Updated
2026-07-13
·
CVE-2026-40468
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
gawk versions 5.4.0 and earlier
Description
An integer overflow occurs in the
builtin.c file. This issue can result in memory exhaustion on the hosting operating system and allow the overwriting of heap metadata and objects with attacker-controlled bytes. An integer overflow is a condition where an arithmetic operation attempts to create a numeric value that is outside of the range that can be represented with a given number of bits.Recommendations
Update gawk to a version later than 5.4.0.
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gawk