Register | Log in

libtext-csv-xs-perl

Perl C/XS module to process Comma-Separated Value files

Choose email to subscribe with

general

source: libtext-csv-xs-perl (main)
version: 1.61-1
maintainer: Debian Perl Group (archive) (DMD) (LowNMU)
uploaders: Vincent Danjean [DMD] – Damyan Ivanov [DMD] – gregor herrmann [DMD] – Niko Tyni [DMD] – Ansgar Burchardt [DMD] – Xavier Guimard [DMD]
arch: any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.45-1
oldstable: 1.49-1
stable: 1.60-1
testing: 1.61-1
unstable: 1.61-1

versioned links

1.45-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.49-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.60-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.61-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libtext-csv-xs-perl

action needed

Multiarch hinter reports 1 issue(s) high

There are issues with the multiarch metadata for this package.

libtext-csv-xs-perl conflicts on /usr/share/man/man3/Text::CSV_XS.3pm.gz on amd64, arm64 and 6 more with 26 combinations

Created: 2026-04-28 Last update: 2026-05-03 14:30

A new upstream version is available: 1.62 high

A new upstream version 1.62 is available, you should consider packaging it.

Created: 2026-05-01 Last update: 2026-05-03 11:02

1 security issue in trixie high

There is 1 open security issue in trixie.

1 important issue:

CVE-2026-7111: Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

Created: 2026-04-29 Last update: 2026-04-30 06:00

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2026-7111: Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

Created: 2026-04-29 Last update: 2026-04-30 06:00

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2026-7111: Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

Created: 2026-04-29 Last update: 2026-04-30 06:00

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2026-7111: Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

Created: 2026-04-29 Last update: 2026-04-30 06:00

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2026-7111: Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

Created: 2026-04-29 Last update: 2026-04-30 06:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.7.2).

Created: 2025-12-23 Last update: 2026-03-31 15:01

news

[2025-10-01] libtext-csv-xs-perl 1.61-1 MIGRATED to testing (Debian testing watch)
[2025-09-28] Accepted libtext-csv-xs-perl 1.61-1 (source) into unstable (gregor herrmann)
[2025-02-04] libtext-csv-xs-perl 1.60-1 MIGRATED to testing (Debian testing watch)
[2025-02-02] Accepted libtext-csv-xs-perl 1.60-1 (source) into unstable (gregor herrmann)
[2025-01-14] libtext-csv-xs-perl 1.59-1 MIGRATED to testing (Debian testing watch)
[2025-01-12] Accepted libtext-csv-xs-perl 1.59-1 (source) into unstable (gregor herrmann)
[2024-11-20] libtext-csv-xs-perl 1.57-1 MIGRATED to testing (Debian testing watch)
[2024-11-17] Accepted libtext-csv-xs-perl 1.57-1 (source) into unstable (gregor herrmann)
[2024-08-15] libtext-csv-xs-perl 1.56-1 MIGRATED to testing (Debian testing watch)
[2024-08-12] Accepted libtext-csv-xs-perl 1.56-1 (source) into unstable (gregor herrmann)
[2024-06-24] libtext-csv-xs-perl 1.55-1 MIGRATED to testing (Debian testing watch)
[2024-06-21] Accepted libtext-csv-xs-perl 1.55-1 (source) into unstable (gregor herrmann)
[2024-05-03] libtext-csv-xs-perl 1.54-1 MIGRATED to testing (Debian testing watch)
[2024-04-19] Accepted libtext-csv-xs-perl 1.54-1 (source) into unstable (gregor herrmann)
[2023-11-28] libtext-csv-xs-perl 1.53-1 MIGRATED to testing (Debian testing watch)
[2023-11-25] Accepted libtext-csv-xs-perl 1.53-1 (source) into unstable (gregor herrmann)
[2023-10-02] libtext-csv-xs-perl 1.52-1 MIGRATED to testing (Debian testing watch)
[2023-09-30] Accepted libtext-csv-xs-perl 1.52-1 (source) into unstable (gregor herrmann)
[2023-08-14] libtext-csv-xs-perl 1.51-1 MIGRATED to testing (Debian testing watch)
[2023-08-11] Accepted libtext-csv-xs-perl 1.51-1 (source) into unstable (gregor herrmann)
[2023-06-13] libtext-csv-xs-perl 1.50-1 MIGRATED to testing (Debian testing watch)
[2023-03-02] Accepted libtext-csv-xs-perl 1.50-1 (source) into unstable (gregor herrmann)
[2023-01-11] libtext-csv-xs-perl 1.49-1 MIGRATED to testing (Debian testing watch)
[2023-01-05] Accepted libtext-csv-xs-perl 1.49-1 (source) into unstable (gregor herrmann)
[2022-06-01] libtext-csv-xs-perl 1.48-1 MIGRATED to testing (Debian testing watch)
[2022-05-30] Accepted libtext-csv-xs-perl 1.48-1 (source) into unstable (gregor herrmann)
[2021-12-26] libtext-csv-xs-perl 1.47-1 MIGRATED to testing (Debian testing watch)
[2021-12-23] Accepted libtext-csv-xs-perl 1.47-1 (source) into unstable (gregor herrmann)
[2021-08-25] libtext-csv-xs-perl 1.46-1 MIGRATED to testing (Debian testing watch)
[2021-08-22] Accepted libtext-csv-xs-perl 1.46-1 (source) into unstable (gregor herrmann)

1
2

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, reproducibility, cross
popcon
browse source code
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.61-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing