ГлавнаяУязвимости → CVE-2026-8357
7.8высокая

CVE-2026-8357

Описание

LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of many opening tokens. The array that tracks nesting depth was allocated one element too small for that worst case, so such a formula wrote one element past its end. In fixed versions the array is sized to hold the largest possible nesting.

CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.libreoffice.org/about-us/security/advisories/cve-2026-8357https://access.redhat.com/errata/RHSA-2026:35839https://access.redhat.com/errata/RHSA-2026:36832https://access.redhat.com/security/cve/CVE-2026-8357https://bugzilla.redhat.com/show_bug.cgi?id=2488964https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-8357.json