Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MLX has Wild Pointer Dereference in load_gguf()
Vulnerability Description
MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::load_gguf() when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This issue has been patched in version 0.29.4.
CVSS Information
N/A
Vulnerability Type
空指针解引用
Vulnerability Title
MLX 代码问题漏洞
Vulnerability Description
MLX是ml-explore开源的一个机器学习框架。 MLX 0.29.4之前版本存在代码问题漏洞,该漏洞源于加载恶意GGUF文件时存在分段错误,可能导致应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A