[Git][security-tracker-team/security-tracker][master] Add two new issues in libxls

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ecd0615c by Salvatore Bonaccorso at 2026-06-05T22:19:25+02:00
Add two new issues in libxls

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1350,9 +1350,13 @@ CVE-2026-2596
 CVE-2026-28318 (SolarWinds Serv-U is susceptible to specially crafted POST requests th ...)
 	NOT-FOR-US: SolarWinds
 CVE-2026-26825 (A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 whe ...)
-	TODO: check
+	- r-cran-readxl <undetermined>
+	NOTE: https://github.com/libxls/libxls/issues/156
+	TODO: check security impact for r-cran-readxl
 CVE-2026-26824 (libxls through version 1.6.3 contains a use of uninitialized memory vu ...)
-	TODO: check
+	- r-cran-readxl <undetermined>
+	NOTE: https://github.com/libxls/libxls/issues/155
+	TODO: check security impact for r-cran-readxl
 CVE-2026-25551 (Seagull Software BarTender 2021 R1 through 12.0.1contains an insecure  ...)
 	NOT-FOR-US: Seagull Software BarTender
 CVE-2026-25550 (Seagull Software BarTender 2010, 2016, and 2019 contain an unauthentic ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ecd0615c7b884e7da15cc46bd6bb06665f21b589

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ecd0615c7b884e7da15cc46bd6bb06665f21b589
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260605/582fd464/attachment.htm>