Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Integer Overflow in GGUF Parser can lead to Heap Out-of-Bounds Read/Write in gguf
Vulnerability Description
llama.cpp is an inference of several LLM models in C/C++. Integer Overflow in the gguf_init_from_file_impl function in ggml/src/gguf.cpp can lead to Heap Out-of-Bounds Read/Write. This vulnerability is fixed in commit 26a48ad699d50b6268900062661bd22f3e792579.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
llama.cpp 安全漏洞
Vulnerability Description
llama.cpp是Georgi Gerganov个人开发者的一个多模态模型。 llama.cpp存在安全漏洞,该漏洞源于gguf_init_from_file_impl函数中整数溢出,可能导致堆越界读写。
CVSS Information
N/A
Vulnerability Type
N/A