Heap Buffer Overflow Vulnerability in LibreOffice OOXML Document Handling
CVE-2026-6047

5.4MEDIUM

Key Information:

Vendor: The Document Foundation
Status: Libreoffice
Vendor: CVE Published:; 15 June 2026

🔔 Create The Document Foundation Vulnerability Alert

What is CVE-2026-6047?

A vulnerability in LibreOffice allows for a heap buffer overflow during the import of OOXML documents (DOCX format). This issue occurs when deferred parser events related to a text box element are replayed. The vulnerability arises from an assumption made about the handler object type, leading it to be treated as a larger object than it actually is. Consequently, writing to its fields risks overwriting memory beyond the allocated space. The fixed versions implement a type check to prevent this misinterpretation and ensure safe writing operations.

Affected Version(s)

LibreOffice 25.8

LibreOffice 26.2

References

https://www.libreoffice.org/about-us/security/advisories/...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 15, 2026
Vulnerability Reserved
Apr 9, 2026

Credit

Anthropic (automated discovery using Claude)

Trail of Bits (triage and validation)

CVE-2026-6047 Data

JSON