CVE-2019-9687 - log back

CVE-2019-9687 edited at 10 Jan 2021 10:59:45
Description
- PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.
+ PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp. The issue is fixed in PoDoFo version 0.9.7.
CVE-2019-9687 edited at 10 Jan 2021 09:28:16
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.
References
+ https://sourceforge.net/p/podofo/mailman/podofo-users/thread/CAD3bFv0VMb1DHK0wta0t%3DXg45Oc0gW%2BiS1dYV-Cxpk7hKBoeZQ%40mail.gmail.com/
+ https://sourceforge.net/p/podofo/code/1969/
CVE-2019-9687 created at 10 Jan 2021 09:16:02
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes