Out-of-Bounds Read Vulnerability in libgphoto2 Camera Access Library
CVE-2026-40339

5.2MEDIUM

Key Information:

Vendor: Gphoto
Status: Libgphoto2
Vendor: CVE Published:; 17 April 2026

What is CVE-2026-40339?

The libgphoto2 library, used for camera access and control, contains an out-of-bounds read vulnerability in the function ptp_unpack_Sony_DPD(). This function reads the FormFlag byte without validating the bounds, which can lead to inadvertent access of memory locations outside the intended range. The related ptp_unpack_DPD() function incorporates necessary bounds checks, but this specific variant fails to do so, exposing systems using versions up to 2.5.33 to potential risks. The issue has been addressed in commit 09f8a940b1e418b5693f5c11e3016a1ad2cea62d, providing a fix for affected versions.

Affected Version(s)

libgphoto2 <= 2.5.33

References

https://github.com/gphoto/libgphoto2/security/advisories/...

x_refsource_CONFIRM

https://github.com/gphoto/libgphoto2/commit/09f8a940b1e41...

x_refsource_MISC

CVSS V3.1

Score:

5.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2026
Vulnerability Reserved
Apr 10, 2026

CVE-2026-40339 Data

JSON

Gphoto

What is CVE-2026-40339?

Affected Version(s)

References

CVSS V3.1

Timeline