10 matches found
EUVD-2024-38941
Malicious code in bioql PyPI...
CVE-2024-41130
llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in ggufinitfromfile. This vulnerability is fixed in b3427...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference through the ggufinitfromfile function. Remediation Upgrade llama-cpp to version b3542 or higher. References - GitHub Commit...
CVE-2024-41130 llama.cpp null pointer dereference in gguf_init_from_file
llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in ggufinitfromfile. This vulnerability is fixed in b3427...
CVE-2024-41130 llama.cpp null pointer dereference in gguf_init_from_file
llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in ggufinitfromfile. This vulnerability is fixed in b3427...
CVE-2024-41130
CVE-2024-41130 affects llama.cpp (C/C++) with a null pointer dereference in gguf_init_from_file. Root cause: null pointer dereference prior to version b3427. Impact: as documented, DoS-like behavior stemming from the crash/denial of service. Remediation: upgrade to version b3427 or later (per off...
CVE-2024-32878
Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in ggufinitfromfile, the code will free this uninitialized variable later. In a simple POC, it will directly cause a crash. If the file is carefully constructed, it may be possible to control this...
CVE-2024-32878 Use of Uninitialized Variable Vulnerability in llama.cpp
Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in ggufinitfromfile, the code will free this uninitialized variable later. In a simple POC, it will directly cause a crash. If the file is carefully constructed, it may be possible to control this...
CVE-2024-32878
Summary: CVE-2024-32878 affects llama.cpp (C/C++) with a use of an uninitialized heap variable in gguf_init_from_file. The vulnerability can cause a crash (DoS) and may allow arbitrary code execution if an attacker crafts input. The issue has been patched in commit b2740. What’s affected (based o...
llama.cpp GGUF library info->ne heap-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2024-1914 llama.cpp GGUF library info-ne heap-based buffer overflow vulnerability February 26, 2024 CVE Number CVE-2024-21802 SUMMARY A heap-based buffer overflow vulnerability exists in the GGUF library info-ne functionality of llama.cpp Commit 18c2e17. A special...