all AI news logo
all AI news - Your AI news aggregator
Log in Sign up
all AI news

GGML GGUF File Format Vulnerabilities

Add to bookmarks
s
March 26, 2024, 6:47 a.m. |

Simon Willison's Weblog simonwillison.net

GGML GGUF File Format Vulnerabilities


The GGML and GGUF formats are used by llama.cpp to package and distribute model weights.


Neil Archibald: "The GGML library performs insufficient validation on the input file and, therefore, contains a selection of potentially exploitable memory corruption vulnerabilities during parsing."


These vulnerabilities were shared with the library authors on 23rd January and patches landed on the 29th.


If you have a llama.cpp or llama-cpp-python installation that's more than a month old you should upgrade ASAP.

ai authors corruption cpp file format generativeai library llama llms memory neil package parsing security validation vulnerabilities

Visit resource

More from simonwillison.net / Simon Willison's Weblog

Si
Quoting Martin Kleppmann 13 hours ago | simonwillison.net
ai current ideas job +3
Si
Everything Google's Python team were responsible for 14 hours ago | simonwillison.net
everything google hacker hackernews +4
Si
Quoting Moxie Marlinspike 1 day, 11 hours ago | simonwillison.net
ai black box box build +8
Si
Quoting Dana Mattioli 1 day, 15 hours ago | simonwillison.net
access amazon competitors dana +9
Si
Food Delivery Leak Unmasks Russian Security Agents 2 days, 6 hours ago | simonwillison.net
agents april bellingcat data +18
Si
Quoting Alex Jason, via Adam Savage 2 days, 18 hours ago | simonwillison.net
adam alex difference jason +4
Si
Quoting James Betker 3 days, 3 hours ago | simonwillison.net
clear dataset datasets every +6
Si
Blogmarks that use markdown 3 days, 4 hours ago | simonwillison.net
blog blogging commentary djangosqldashboard +6
Si
No, Most Books Don't Sell Only a Dozen Copies 3 days, 5 hours ago | simonwillison.net
antitrust book books lawsuit +6

Jobs in AI, ML, Big Data

Post a job on ai-jobs.net Find talent on ai-jobs.net

Data Architect

@ University of Texas at Austin | Austin, TX
View on ai-jobs.net

Data ETL Engineer

@ University of Texas at Austin | Austin, TX
View on ai-jobs.net

Lead GNSS Data Scientist

@ Lurra Systems | Melbourne
View on ai-jobs.net

Senior Machine Learning Engineer (MLOps)

@ Promaton | Remote, Europe
View on ai-jobs.net

Research Scientist

@ Meta | Menlo Park, CA
View on ai-jobs.net

Principal Data Scientist

@ Mastercard | O'Fallon, Missouri (Main Campus)
View on ai-jobs.net
View more jobs