CVE-2026-40336 | gphoto libgphoto2 up to 2.5.33 camlibs/ptp2/ptp-pack.c ptp_unpack_Sony_DPD memory leak (GHSA-g8xw-p5wj-mrxv)

A vulnerability was found in gphoto libgphoto2 up to 2.5.33. It has been declared as problematic. This affects the function ptp_unpack_Sony_DPD of the file camlibs/ptp2/ptp-pack.c. Executing a manipulation can lead to memory leak.

This vulnerability appears as CVE-2026-40336. The physical device can be targeted for the attack. There is no available exploit.

Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More