These are all security issues fixed in the libxls-devel-1.6.2-2.2 package on the GA media of openSUSE Tumbleweed.