PatchSiren cyber security CVE debrief
CVE-2026-8356 The Document Foundation CVE debrief
CVE-2026-8356 is a stack buffer overflow vulnerability in LibreOffice's PPT import feature. When importing a colour-replacement record from a PPT file, two fixed-size colour tables are filled from the file. However, the write position was not reset between the two passes over the record. This could allow a file with a combined colour count exceeding the table size to write past the end of the tables on the stack. The vulnerability has been fixed by removing the unused second pass over the record.
- Vendor
- The Document Foundation
- Product
- LibreOffice
- CVSS
- MEDIUM 5.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Users of LibreOffice who open PPT files from untrusted sources should update to the latest version.
Technical summary
The vulnerability exists in the PPT import feature of LibreOffice. A stack buffer overflow occurs when importing a colour-replacement record from a PPT file. The vulnerability has a CVSS score of 5.4 and is classified as MEDIUM severity.
Defensive priority
Medium
Recommended defensive actions
- Update to the latest version of LibreOffice.
Evidence notes
The CVE record was obtained from the official CVE website and the NVD database.
Official resources
-
CVE-2026-8356 CVE record
CVE.org
-
CVE-2026-8356 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-8356 was published on 2026-06-15T18:16:37.390Z and has not been modified since then.