CVE-2026-8357
Severity CVSS v4.0:
MEDIUM
Type:
Unavailable / Other
Publication date:
15/06/2026
Last modified:
15/07/2026
Description
LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of many opening tokens. The array that tracks nesting depth was allocated one element too small for that worst case, so such a formula wrote one element past its end. In fixed versions the array is sized to hold the largest possible nesting.
Impact
Base Score 4.0
5.40
Severity 4.0
MEDIUM
Base Score 3.x
7.80
Severity 3.x
HIGH
References to Advisories, Solutions, and Tools
- https://www.libreoffice.org/about-us/security/advisories/cve-2026-8357
- https://access.redhat.com/errata/RHSA-2026:35839
- https://access.redhat.com/errata/RHSA-2026:36832
- https://access.redhat.com/security/cve/CVE-2026-8357
- https://bugzilla.redhat.com/show_bug.cgi?id=2488964
- https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-8357.json



