Ggml Llama.cpp
3 CVEs affecting Ggml Llama.cpp. Latest disclosed: 2026-04-01. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-34159 | Critical | 9.8 | 2026-04-01 | llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492, the RPC backend's deserialize_tensor() skips all bounds validation when a ten… |
CVE-2026-33298 | High | 7.8 | 2026-03-24 | llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the `ggml_nbytes` function allows an attacker to… |
CVE-2026-27940 | High | 7.8 | 2026-03-12 | llama.cpp is an inference of several LLM models in C/C++. Prior to b8146, the gguf_init_from_file_impl() in gguf.cpp is vulnerable to an Integer overflow, lead… |