CVE-2016-10327: libreoffice: Heap-buffer-overflow in EnhWMFReader::ReadEnhWMF

Severity: Critical

CVSS Score: 9.8

LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.