A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information.CreditsRed Hat would like to thank Jiongchi Yu for reporting this issue.Referenceshttps://access.redhat.com/security/cve/CVE-2023-4156https://bugzilla.redhat.com/show_bug.cgi?id=2215930
