Improper Input Validation

Overview vllm is an A high-throughput and memory-efficient inference and serving engine for LLMs Affected versions of this package are vulnerable to Improper Input Validation due to inconsistent downmixing behavior in the tomono process. An attacker can manipulate audio inputs to cause the AI mod...

PT-2026-29877

vLLM is an inference and serving engine for large language models LLMs. From version 0.5.5 to before version 0.18.0, Librosa defaults to using numpy.mean for mono downmixing to mono, while the international standard ITU-R BS.775-4 specifies a weighted downmixing algorithm. This discrepancy result...

[SECURITY] Fedora 36 Update: opusfile-0.12-9.fc36

libopusfile provides a high-level API for decoding and seeking within .opus files. It includes: Support for all files with at least one Opus stream including multichannel files or Ogg files where Opus is muxed with something else. Full support, including seeking, for chained files. A simple stere...

Fedora: Security Advisory for opusfile (FEDORA-2023-6b83109e4e)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 37 Update: mingw-opusfile-0.12-9.fc37

libopusfile provides a high-level API for decoding and seeking within .opus files. It includes: Support for all files with at least one Opus stream including multichannel files or Ogg files where Opus is muxed with something else. Full support, including seeking, for chained files. A simple stere...