The libgphoto2 library has multiple vulnerabilities in versions up to 2.5.33 that could lead to memory leaks, out-of-bounds reads, and crashes when processing camera data.

🚨 EUVD-2026-23581 📊 Score: 6.1/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptp_unpack_EOS_events() have xsi... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23581 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23583 📊 Score: 3.5/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in ptp_unpack_Canon_FE() in camlibs/ptp2/ptp-pack.c (line 1377). The function copies a filename into a 13-byte buffer using strncpy ... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23583 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23586 📊 Score: 5.2/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in `ptp_unpack_DPV()` in `camlibs/ptp2/ptp-pack.c` (lines 622–629). The UINT128 and INT128 cases advance `*offset += 16` without verifying tha... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23586 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23587 📊 Score: 2.4/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in `ptp_unpack_Sony_DPD()` in `camlibs/ptp2/ptp-pack.c` (lines 884–885). When processing a secondary enumeration list (introduced in 2024+ Sony camera... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23587 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23605 📊 Score: 5.2/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in the PTP_DPFF_Enumeration case of `ptp_unpack_Sony_DPD()` in `camlibs/ptp2/ptp-pack.c` (line 856). The function reads a 2-byte enumeration c... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23605 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23607 📊 Score: 5.2/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in `ptp_unpack_Sony_DPD()` in `camlibs/ptp2/ptp-pack.c` (line 842). The function reads the FormFlag byte via `dtoh8o(data, *poffset)` without ... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23607 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23609 📊 Score: 6.1/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read vulnerability in `ptp_unpack_OI()` in `camlibs/ptp2/ptp-pack.c` (lines 530–563). The function validates `len < PTP_oi_SequenceNumber` (i.e., l... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23609 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23611 📊 Score: 3.5/10 (CVSS v3.1) 📦 Product: libgphoto2 🏢 Vendor: gphoto 📅 Updated: 2026-04-17 📝 libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, an out of bound read in ptp_unpack_EOS_FocusInfoEx could be used to crash libgphoto2 when processing input from untrusted USB devices. Commit c385b34af260595dfbb5f93... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23611 #cybersecurity #infosec #euvd #cve #vulnerability