1058 matches found
GHSA-6V7P-G79W-8964 vulnerabilities
Vulnerabilities for packages: authentik, openstack-placement-2025.2, authentik-fips, openstack-horizon-2025.1-fips, lmcache-cuda-12.8, openstack-keystone-2025.1, dbt-core, openstack-tempest-2025.2, synapse, openstack-horizon-2025.1, openstack-keystone-2026.1, openstack-horizon-2026.1-fips,...
GHSA-4XGF-CPJX-PC3J vulnerabilities
Vulnerabilities for packages: airflow-core, mcp-atlassian, litellm, prefect, lmcache-cuda-12.8, vllm-cuda-13.2...
CVE-2026-54235
vLLM is an inference and serving engine for large language models LLMs. Prior to 0.23.1rc0, ll temperature validation gates use comparison operators , which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagat...
CVE-2026-50269 vulnerabilities
Vulnerabilities for packages: py3-vllm-cuda-12.4, py3-vllm-cuda-12.9...
GHSA-M6QW-4CW2-HM4M vulnerabilities
Vulnerabilities for packages: py3-vllm-cuda-12.4, py3-vllm-cuda-12.9...
vLLM: GGUF dequantize kernel int truncation exposes uninitialized GPU memory in multi-tenant serving
Summary Integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels csrc/quantization/gguf/ggufkernel.cu causes partial tensor processing. The output tensor is allocated at full size via torch::empty uninitialized memory, but the dequantize CUDA kernel processes only a truncated...
CVE-2026-53537 vulnerabilities
Vulnerabilities for packages: airflow-core, litellm, wazuh-manager-fips, airflow-postgres-fips, tritonserver-backend-vllm-cuda-12.9...
CVE-2026-53540 vulnerabilities
Vulnerabilities for packages: litellm, airflow-core, tritonserver-backend-vllm-cuda-12.9...
GHSA-V9PG-7XVM-68HF vulnerabilities
Vulnerabilities for packages: litellm, airflow-core, tritonserver-backend-vllm-cuda-12.9...
GHSA-6JV3-5F52-599M vulnerabilities
Vulnerabilities for packages: airflow-core, litellm, wazuh-manager-fips, airflow-postgres-fips, tritonserver-backend-vllm-cuda-12.9...
CVE-2026-53539 vulnerabilities
Vulnerabilities for packages: airflow-core, litellm, wazuh-manager-fips, airflow-postgres-fips, tritonserver-backend-vllm-cuda-12.9...
CVE-2026-54282 vulnerabilities
Vulnerabilities for packages: prefect-fips, airflow-core, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, mlflow-fips, nemo, airflow, prefect, semgrep, tritonserver-backend-vllm-cuda-12.9...
GHSA-82W8-QH3P-5JFQ vulnerabilities
Vulnerabilities for packages: prefect-fips, airflow-core, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, mlflow-fips, nemo, airflow, prefect, semgrep, tritonserver-backend-vllm-cuda-12.9...
GHSA-JP82-JPQV-5VV3 vulnerabilities
Vulnerabilities for packages: prefect-fips, airflow-core, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, mlflow-fips, nemo, airflow, prefect, semgrep, tritonserver-backend-vllm-cuda-12.9...
CVE-2026-54283 vulnerabilities
Vulnerabilities for packages: prefect-fips, airflow-core, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, mlflow-fips, nemo, airflow, prefect, semgrep, tritonserver-backend-vllm-cuda-12.9...
GHSA-G3CQ-J2XW-WF74 vulnerabilities
Vulnerabilities for packages: mlflow, authentik, authentik-fips, metaflow-service-fips, request-1276, tritonserver-backend-vllm-cuda-13.0, py3-vllm-cuda-12.4, text-generation-inference, mlflow-fips, py3-vllm-cuda-12.9...
GHSA-HPJ7-WQ8M-9HGP vulnerabilities
Vulnerabilities for packages: mlflow, authentik, authentik-fips, metaflow-service-fips, request-1276, tritonserver-backend-vllm-cuda-13.0, py3-vllm-cuda-12.4, text-generation-inference, mlflow-fips, py3-vllm-cuda-12.9...
CVE-2026-54274 vulnerabilities
Vulnerabilities for packages: mlflow, authentik, authentik-fips, metaflow-service-fips, request-1276, tritonserver-backend-vllm-cuda-13.0, py3-vllm-cuda-12.4, text-generation-inference, mlflow-fips, py3-vllm-cuda-12.9...
CVE-2026-54277 vulnerabilities
Vulnerabilities for packages: mlflow, authentik, authentik-fips, metaflow-service-fips, request-1276, tritonserver-backend-vllm-cuda-13.0, py3-vllm-cuda-12.4, text-generation-inference, mlflow-fips, py3-vllm-cuda-12.9...
CVE-2026-54273 vulnerabilities
Vulnerabilities for packages: mlflow, authentik, authentik-fips, metaflow-service-fips, request-1276, tritonserver-backend-vllm-cuda-13.0, py3-vllm-cuda-12.4, text-generation-inference, mlflow-fips, py3-vllm-cuda-12.9...