CNNVD-202601-1146 Information

CNNVD ID

CNNVD-202601-1146

Related CVE

CVE-2026-22188

• CNNVD Published: 2026-01-07

Description (Chinese)

Panda3D是Panda3D开源的一个跨平台游戏引擎。 Panda3D 1.10.16及之前版本存在安全漏洞，该漏洞源于deploy-stub存在无界栈分配，可能导致栈空间耗尽和进程崩溃。

Description (English)

Panda3D is a cross-platform game engine for Panda3D open source. 1.10.16 and previous versions of Panda3D have a security loophole, which stems from the lack of boundary distribution in the deploy-stub, which could lead to the depletion of the cork space and the collapse of the process.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Panda3D

Published

2026-01-07

Last Modified

2026-02-24

References

https://github.com/panda3d/panda3d https://seclists.org/fulldisclosure/2026/Jan/9 https://www.panda3d.org/ https://www.vulncheck.com/advisories/panda3d-deploy-stub-stack-exhaustion-via-unbounded-alloca