Source: libpodofo Version: 0.9.6+dfsg-4 Severity: important Tags: security upstream
Hi, The following vulnerability was published for libpodofo. CVE-2019-9687[0]: | PoDoFo 0.9.6 has a heap-based buffer overflow in | PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-9687 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9687 [1] https://sourceforge.net/p/podofo/code/1969 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
