Ggerganov Llama.cpp
5 CVEs affecting Ggerganov Llama.cpp. Latest disclosed: 2024-08-12. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-42479 | Critical | 10.0 | 2024-08-12 | llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address writing. This vulnerabili… |
CVE-2024-32878 | High | 7.1 | 2024-04-26 | Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in gguf_init_from_file, the code will free this uninitialized… |
CVE-2024-41130 | Medium | 5.4 | 2024-07-22 | llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in gguf_init_from_file. This vulnerability is fixed in… |
CVE-2024-42478 | Medium | 5.3 | 2024-08-12 | llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address reading. This vulnerabili… |
CVE-2024-42477 | Medium | 5.3 | 2024-08-12 | llama.cpp provides LLM inference in C/C++. The unsafe `type` member in the `rpc_tensor` structure can cause `global-buffer-overflow`. This vulnerability may le… |