Podofo · Podofo · CVE-2019-9687
**Name of the Vulnerable Software and Affected Versions**
PoDoFo version 0.9.6
**Description**
The issue is a heap-based buffer overflow in the `PdfString::ConvertUTF16toUTF8` function located in `base/PdfString.cpp`.
**Recommendations**
For PoDoFo version 0.9.6, update to a newer version that contains a fix for this issue.