A vulnerability, which was classified as problematic, was found in GNU gawk up to 5.4.0. This affects the function do_getline_redir of the file io.c of the component Input Redirection. Executing a manipulation can lead to use after free.

This vulnerability is registered as CVE-2026-40467. The attack needs to be launched locally. No exploit is available.