Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-40469— Heap buffer overflow in gawk

AI Predicted 5.3 Difficulty: Moderate

Possible ATT&CK Techniques 1AI

T1203 · Exploitation for Client Execution

Affected Version Matrix 1

VendorProductVersion RangeStatus
GNUgawk≤ 5.4.0affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-40469

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Heap buffer overflow in gawk
Source: NVD (National Vulnerability Database)
Vulnerability Description
Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
整数溢出或超界折返
Source: NVD (National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
GNUgawk 0 ~ 5.4.0 -

II. Public POCs for CVE-2026-40469

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-40469

登录查看更多情报信息。

Patches & Fixes for CVE-2026-40469 (1)

Security Blog Posts for CVE-2026-40469 (1)

Same Patch Batch · GNU · 2026-07-13 · 5 CVEs total

CVE-2026-155205.3 MEDIUMGNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based over
CVE-2026-40553Stack-based buffer overflow in gawk
CVE-2026-40468Heap buffer overflow in gawk
CVE-2026-40467Use after free in gawk

IV. Related Vulnerabilities

V. Comments for CVE-2026-40469

No comments yet


Leave a comment