View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2019-9687 severity low: SUSE including 9 source package names (libpodofo-0_10-devel-0.10.5-1.1, libpodofo-devel, …), 21 product×package rows across 6 product lines (SUSE Linux Enterprise Module for Package Hub 15 SP5, SUSE Linux Enterprise Module for Package Hub 15 SP6, … (6 product lines)): Known Not Affected 15, Fixed 6.
PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.