CVE-2026-6040

Name of the Vulnerable Software and Affected Versions The product name cannot be determined (affected versions not specified)

Description A heap use-after-free occurs during the import of blank-width characters within an ODF number format. This happens because a position value read from the document is not validated against the length of the format-code string, allowing a malformed number format to be processed against memory outside the intended string boundaries. Heap use-after-free is a memory corruption issue where a program continues to use a pointer after the memory it points to has been freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.