QSearchQSearch

CVE-2026-8357

LibreOffice Calc compiles cell formulas when opening a spreadsheet

Published: 2026-06-15 · Last updated: 2026-06-15

Severity and scoring

CWE
CWE-193, CWE-787

Description

LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of many opening tokens. The array that tracks nesting depth was allocated one element too small for that worst case, so such a formula wrote one element past its end. In fixed versions the array is sized to hold the largest possible nesting.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-8358 LibreOffice Calc can import tracked changes from a spreadsheet document
  • CVE-2026-8356 LibreOffice can import presentations in the legacy binary PPT format
  • CVE-2026-6047 LibreOffice can import documents in the OOXML format (DOCX)
  • CVE-2026-6045 LibreOffice can import EMF+ graphics, which may be embedded in documents
  • CVE-2026-6040 A heap use-after-free existed when importing the blank-width characters of an ODF number format