CVE-2026-40340 | gphoto libgphoto2 up to 2.5.33 camlibs/ptp2/ptp-pack.c ptp_unpack_OI out-of-bounds (GHSA-xfw3-xvjp-5wcv)

A vulnerability was found in gphoto libgphoto2 up to 2.5.33. It has been rated as critical. The affected element is the function ptp_unpack_OI of the file camlibs/ptp2/ptp-pack.c. Performing a manipulation results in out-of-bounds read.

This vulnerability is known as CVE-2026-40340. The attack may be carried out on the physical device. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More