** Description changed:

  https://www.libreoffice.org/security
  
  Addressed in LibreOffice 26.2.3/25.8.7
  
  CVE-2026-6039 Heap buffer overflow in DXF polyline import
  - https://gerrit.libreoffice.org/c/core/+/203575
  CVE-2026-6040 Heap use-after-free in ODF number-format blank-width parsing
  - https://gerrit.libreoffice.org/c/core/+/203576
  CVE-2026-6045 Heap buffer overflow in EMF+ gradient brush import
  - https://gerrit.libreoffice.org/c/core/+/203577
  - https://gerrit.libreoffice.org/c/core/+/203581
  - https://gerrit.libreoffice.org/c/core/+/203582
  CVE-2026-6047 Heap buffer overflow in OOXML text box element import
  - https://gerrit.libreoffice.org/c/core/+/203578
  
  Addressed in LibreOffice 26.2.4
  
  CVE-2026-8356 Stack buffer overflow in PPT presentation import
  - https://gerrit.libreoffice.org/c/core/+/205089
  CVE-2026-8357 Heap buffer overflow in Calc formula compilation
  - https://gerrit.libreoffice.org/c/core/+/205090
  CVE-2026-8358 Heap buffer overflow in spreadsheet tracked-changes import
  - https://gerrit.libreoffice.org/c/core/+/205091
  
- 
  * Resolute 26.04: Fix is included in 26.2.4 SRU
-   - no-change rebuild for security pocket required
-   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/resolute-26.2
+   - no-change rebuild for security pocket required
+   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/resolute-26.2
  * Questing 25.10: Backport of patches to 25.8.7 required
-   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/questing-25.8
-   - 
https://launchpad.net/~ricotz/+archive/ubuntu/ppa/+sourcepub/18498570/+listing-archive-extra
+   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/questing-25.8
+   - 
https://launchpad.net/~ricotz/+archive/ubuntu/ppa/+sourcepub/18498570/+listing-archive-extra
  * Noble 24.04: Backport of patches to 24.2.7 required
-   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/noble-24.2
-   - 
https://launchpad.net/~ricotz/+archive/ubuntu/ppa/+sourcepub/18498587/+listing-archive-extra
+   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/noble-24.2
+   - 
https://launchpad.net/~ricotz/+archive/ubuntu/ppa/+sourcepub/18498587/+listing-archive-extra
  * Jammy 22.04: Backport of patches to 7.3.7 required
-   - ...
+   - 
https://git.launchpad.net/~libreoffice/ubuntu/+source/libreoffice/log/?h=wip/jammy-7.3
+   - 
https://launchpad.net/~ricotz/+archive/ubuntu/ppa/+sourcepub/18611019/+listing-archive-extra
  * Focal 20.04: Backport of patches to 6.4.7 required
-   - ...
+   - ...

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2158559

Title:
  CVE-2026-* (June 15th 2026)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libreoffice/+bug/2158559/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to