Bug#924430: libpodofo: CVE-2019-9687

Moritz Mühlenhoff Sun, 17 Mar 2019 12:33:31 -0700

On Tue, Mar 12, 2019 at 10:38:20PM +0100, Salvatore Bonaccorso wrote:
> Source: libpodofo
> Version: 0.9.6+dfsg-4
> Severity: important
> Tags: security upstream
> 
> Hi,
> 
> The following vulnerability was published for libpodofo.
> 
> CVE-2019-9687[0]:
> | PoDoFo 0.9.6 has a heap-based buffer overflow in
> | PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.


This is now fixed upstream, see https://sourceforge.net/p/podofo/code/1969

Cheers,
        Moritz

Bug#924430: libpodofo: CVE-2019-9687

Reply via email to