{"id":"CVE-2026-40385","details":"In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems.","modified":"2026-06-18T14:57:06.138340Z","published":"2026-04-12T18:16:30.420Z","related":["ALSA-2026:20929","ALSA-2026:22553","openSUSE-SU-2026:10717-1"],"database_specific":{"cwe_ids":["CWE-190"],"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/40xxx/CVE-2026-40385.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/40xxx/CVE-2026-40385.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-40385"},{"type":"FIX","url":"https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libexif/libexif","events":[{"introduced":"0"},{"fixed":"93003b93e50b3d259bd2227d8775b73a53c35d58"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"0.6.25"}],"source":["CPE_RANGE","REFERENCES"],"cpe":"cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*"}}],"versions":["v0.6.25","libexif-0_6_25-release","v0.6.24","libexif-0_6_24-release","v0.6.23","libexif-0_6_23-release","libexif-0_6_22-release","cvs-migration","libexif-0_6_21-release","libexif-0_6_20-release","libexif-0_6_19-release","libexif-0_6_18-release","libexif-0_6_17-release","libexif-0_6_16-release","libexif-0_6_15-release","libexif-0_6_14-release","libexif-0_6_12-release","libexif-before-0_6_0-api-change","libexif-0_5_9-release","libexif-0_5_7-release","libexif-0_5_7-rc4","libexif-0_5_7-rc3","libexif-0_5_7-rc2"],"database_specific":{"vanir_signatures":[{"id":"CVE-2026-40385-063e98f7","target":{"file":"libexif/olympus/exif-mnote-data-olympus.c"},"source":"https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58","signature_type":"Line","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["44364553068656902013241119499066941894","84803690842731361292614978179914194703","69302651060603491418130840016775313020"]},"signature_version":"v1"},{"id":"CVE-2026-40385-5b4f5524","target":{"file":"libexif/olympus/exif-mnote-data-olympus.c","function":"exif_mnote_data_olympus_load"},"source":"https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58","signature_type":"Function","deprecated":false,"digest":{"function_hash":"124667694046732373236033063371576930238","length":6426},"signature_version":"v1"}],"vanir_signatures_modified":"2026-06-18T14:57:06Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-40385.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L"}]}