Cmu

Panda3d

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2026-22188

Exploit
  • EPSS 0.01%
  • Veröffentlicht 07.01.2026 20:26:13
  • Zuletzt bearbeitet 12.01.2026 18:00:28

Panda3D versions up to and including 1.10.16 deploy-stub contains a denial of service vulnerability due to unbounded stack allocation. The deploy-stub executable allocates argv_copy and argv_copy2 using alloca() based directly on the attacker-control...

7.5

CVE-2026-22190

Exploit
  • EPSS 0.03%
  • Veröffentlicht 07.01.2026 20:25:56
  • Zuletzt bearbeitet 12.01.2026 17:53:57

Panda3D versions up to and including 1.10.16 egg-mkfont contains an uncontrolled format string vulnerability. The -gp (glyph pattern) command-line option is used directly as the format string for sprintf() with only a single argument supplied. If an ...

9.8

CVE-2026-22189

Exploit
  • EPSS 0.08%
  • Veröffentlicht 07.01.2026 20:25:37
  • Zuletzt bearbeitet 12.01.2026 17:59:18

Panda3D versions up to and including 1.10.16 egg-mkfont contains a stack-based buffer overflow vulnerability due to use of an unbounded sprintf() call with attacker-controlled input. When constructing glyph filenames, egg-mkfont formats a user-suppli...