2 matches found
CVE-2024-21836
creationtimestamp| type| source ---|---|--- 2024-03-14 09:51:13+00:00| seen| https://t.me/ctinow/207577...
CVE-2024-21836
CVE-2024-21836 affects llama.cpp (GGUF library header.n_tensors parsing). Talos reports a heap-based buffer overflow caused by an integer overflow when allocating ctx->infos for a crafted .gguf file, which can lead to a heap overflow during reading tensor names (info->name). Vulnerable comp...