CVE-2026-26824

libxls through version 1.6.3 contains a use of uninitialized memory vulnerability in the OLE container parser. Memory allocated for the Master Sector Allocation Table MSAT in readMSAT is not fully initialized before being consumed by ole2validatesectorchain, which may result in application crashe...

Libxls 代码问题漏洞

libxls is a C library that can read Excel xls files. libxls version 1.6.2 contains a null pointer dereference vulnerability in the xlsgetWorkSheet function in xls.c. An attacker could exploit the vulnerability to cause a denial of service via a specially crafted XLS file...