Security Advisory

CVE-2024-21802

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-26 16:07:51

Last updated 2025-11-04 18:23:00

Assigner talos

State PUBLISHED

Description

A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗