Ggml-org Llama.cpp
8 CVEs affecting Ggml-org Llama.cpp. Latest disclosed: 2026-04-01. Critical: 1, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-34159 | Critical | 9.8 | 2026-04-01 | llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492, the RPC backend's deserialize_tensor() skips all bounds validation when a ten… |
CVE-2026-21869 | High | 8.8 | 2026-01-07 | llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the n_discard parameter is parsed directly from JSON input in the lla… |
CVE-2025-49847 | High | 8.8 | 2025-06-17 | llama.cpp is an inference of several LLM models in C/C++. Prior to version b5662, an attacker‐supplied GGUF model vocabulary can trigger a buffer overflow in l… |
CVE-2025-52566 | High | 8.6 | 2025-06-24 | llama.cpp is an inference of several LLM models in C/C++. Prior to version b5721, there is a signed vs. unsigned integer overflow in llama.cpp's tokenizer impl… |
CVE-2026-33298 | High | 7.8 | 2026-03-24 | llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the `ggml_nbytes` function allows an attacker to… |
CVE-2026-27940 | High | 7.8 | 2026-03-12 | llama.cpp is an inference of several LLM models in C/C++. Prior to b8146, the gguf_init_from_file_impl() in gguf.cpp is vulnerable to an Integer overflow, lead… |
CVE-2026-2069 | Low | 3.3 | 2026-02-06 | A flaw has been found in ggml-org llama.cpp up to 55abc39. Impacted is the function llama_grammar_advance_stack of the file llama.cpp/src/llama-grammar.cpp of… |
CVE-2025-53630 | | 2025-07-10 | llama.cpp is an inference of several LLM models in C/C++. Integer Overflow in the gguf_init_from_file_impl function in ggml/src/gguf.cpp can lead to Heap Out-o… |