3 matches found
SUSE CVE-2026-40333
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
CVE-2026-40341
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, an out of bound read in ptpunpackEOSFocusInfoEx could be used to crash libgphoto2 when processing input from untrusted USB devices. Commit c385b34af260595dfbb5f9329526be5158985987 contains a patch. No known...
Integer Overflow Vulnerability in libmtp 'ptp_unpack_EOS_CustomFuncEx' Function
libmtp is an LGPL library for the Media Transport Protocol. An integer overflow vulnerability exists in the 'ptpunpackEOSCustomFuncEx' function of the ptp-pack.c file in libmtp versions 1.1.12 and earlier. A remote attacker could exploit this vulnerability by plugging a mobile device into a PC vi...