High severity7.8NVD Advisory· Published Jul 8, 2016· Updated Jun 17, 2026
CVE-2016-4324
CVE-2016-4324
Description
Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*range: <=5.1.3
- (no CPE)range: <5.1.4
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- osv-coords3 versionspkg:rpm/opensuse/libreoffice&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libreoffice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/libreoffice&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1
< 5.2.3.3-2.2+ 2 more
- (no CPE)range: < 5.2.3.3-2.2
- (no CPE)range: < 5.1.5.2-29.4
- (no CPE)range: < 5.1.5.2-29.4
Patches
Vulnerability mechanics
References
7- www.libreoffice.org/about-us/security/advisories/cve-2016-4324/nvdVendor Advisory
- www.debian.org/security/2016/dsa-3608nvd
- www.securityfocus.com/bid/91499nvd
- www.securitytracker.com/id/1036209nvd
- www.talosintelligence.com/reports/TALOS-2016-0126/nvd
- www.ubuntu.com/usn/USN-3022-1nvd
- security.gentoo.org/glsa/201611-03nvd
News mentions
0No linked articles in our index yet.