Buffer Overflow Vulnerability in libgphoto2 Camera Control Library
CVE-2026-40334

3.5LOW

Key Information:

Vendor: Gphoto
Status: Libgphoto2
Vendor: CVE Published:; 17 April 2026

What is CVE-2026-40334?

The libgphoto2 library, used for camera access and control, contains a vulnerability due to a missing null terminator in the ptp_unpack_Canon_FE() function. This flaw occurs when filenames are copied into a fixed-size buffer without properly terminating the string. If the source filename precisely matches the buffer length of 13 bytes and lacks a null terminator, it can lead to out-of-bounds memory access during subsequent operations. This can potentially enable attackers to exploit the vulnerability for unauthorized access or execute arbitrary code. The issue was addressed in a patch (commit 259fc7d3bfe534ce4b114c464f55b448670ab873) that ensures proper null termination, thereby mitigating the associated risks.

Affected Version(s)

libgphoto2 <= 2.5.33

References

https://github.com/gphoto/libgphoto2/security/advisories/...

x_refsource_CONFIRM

https://github.com/gphoto/libgphoto2/commit/259fc7d3bfe53...

x_refsource_MISC

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2026
Vulnerability Reserved
Apr 10, 2026

CVE-2026-40334 Data

JSON

Gphoto

What is CVE-2026-40334?

Affected Version(s)

References

CVSS V3.1

Timeline