CVE-2026-40341 | gphoto libgphoto2 up to 2.5.33 ptp_unpack_EOS_FocusInfoEx buffer over-read (GHSA-vjx3-gjp6-r2g2)

A vulnerability was found in gphoto libgphoto2 up to 2.5.33 and classified as problematic. The affected element is the function ptp_unpack_EOS_FocusInfoEx. Such manipulation leads to buffer over-read.

This vulnerability is documented as CVE-2026-40341. The attack can be executed directly on the physical device. There is not any exploit available.

It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More