CVE-2026-40336 | gphoto libgphoto2 up to 2.5.33 camlibs/ptp2/ptp-pack.c ptp_unpack_Sony_DPD memory leak (GHSA-g8xw-p5wj-mrxv)

Inserito da Angelo Barbosa | Apr 18, 2026 | CVE

A vulnerability was found in gphoto libgphoto2 up to 2.5.33. It has been declared as problematic. This affects the function ptp_unpack_Sony_DPD of the file camlibs/ptp2/ptp-pack.c. Executing a manipulation can lead to memory leak.

This vulnerability appears as CVE-2026-40336. The physical device can be targeted for the attack. There is no available exploit.

Applying a patch is advised to resolve this issue.

CVE-2026-40336 | gphoto libgphoto2 up to 2.5.33 camlibs/ptp2/ptp-pack.c ptp_unpack_Sony_DPD memory leak (GHSA-g8xw-p5wj-mrxv)

Post correlati

CVE-2025-30266 | QNAP Systems Qsync Central prior 5.0.0.4 null pointer dereference (qsa-26-02)

CVE-2024-11122 | 上海灵当信息科技有限公司 Lingdang CRM up to 8.6.4.3 index.php?msgid=1&operation=upload file unrestricted upload

CVE-2023-48129 | kimono-oldnew mini-app on Line 13.6.1 Channel Access Token information disclosure

Fuji Electric V-Server/V-Server Lite VPR File out-of-bounds