LibreOffice before versions 18.104.22.168 and 22.214.171.124 is vulnerable to an integer overflow resulting in a write to recently freed data in the StgSmallStrm class from sot/source/sdstor/stgstrms.cxx. An attacker could exploit this to cause a denial of service or other unspecified impact via a crafted document.
Created libreoffice tracking bugs for this issue:
Affects: fedora-26 [bug 1569837]
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3054 https://access.redhat.com/errata/RHSA-2018:3054