Description

libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in ptp_unpack_Canon_FE() in camlibs/ptp2/ptp-pack.c (line 1377). The function copies a filename into a 13-byte buffer using strncpy without explicitly null-terminating the result. If the source data is exactly 13 bytes with no null terminator, the buffer is left unterminated, leading to out-of-bounds reads in any subsequent string operation. Commit 259fc7d3bfe534ce4b114c464f55b448670ab873 patches the issue.

INFO

Published Date :

2026-04-17T23:16:38.751Z

Last Modified :

2026-04-20T13:36:05.703Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-40334 vulnerability.

Vendors Products
Gphoto
  • Libgphoto2
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-40334.

URL Resource
https://github.com/gphoto/libgphoto2/commit/259fc7d3bfe534ce4b114c464f55b448670ab873 cve-icon cve-icon cve-icon
https://github.com/gphoto/libgphoto2/security/advisories/GHSA-ph87-cc3j-c6hm cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-40334 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-40334 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact