GHSA-5x2x-26c9-4q5xMediumCVSS 9.1

Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub()...

Published
July 13, 2026
Last Modified
July 14, 2026

🔗 CVE IDs covered (1)

📋 Description

Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.

🔗 References (4)