NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-8358

Summary	LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the same change identifier for two different kinds of change. The importer then treated one change object as a different, larger type and wrote past the end of its allocation. In fixed versions records with a duplicate identifier are rejected.
Publication Date	June 16, 2026, 3:16 a.m.
Registration Date	June 16, 2026, 4:12 a.m.
Last Update	June 16, 2026, 3:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.libreoffice.org/about-us/security/advisories/cve-2026-8358	security@documentfoundation.org

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-787	境界外書き込み	https://cwe.mitre.org/data/definitions/787.html
2	CWE-843	型の取り違え	https://cwe.mitre.org/data/definitions/843.html