CVE-2019-9687 log

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description
PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp. The issue is fixed in PoDoFo version 0.9.7.
Group Package Affected Fixed Severity Status Ticket
AVG-867 podofo 0.9.6-3 0.9.7-1 Medium Testing FS#61651
References
https://sourceforge.net/p/podofo/mailman/podofo-users/thread/CAD3bFv0VMb1DHK0wta0t%3DXg45Oc0gW%2BiS1dYV-Cxpk7hKBoeZQ%40mail.gmail.com/
https://sourceforge.net/p/podofo/code/1969/