CVE-2024-42477

llama.cpp provides LLM inference in C/C++. The unsafe `type` member in the `rpc_tensor` structure can cause `global-buffer-overflow`. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/ggerganov/llama.cpp/commit/b72942fac998672a79a1ae3c03b340f7e629980b	Patch
https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-mqp6-7pv6-fqjf	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:ggerganov:llama.cpp:*:*:*:*:*:*:*:*

History

15 Aug 2024, 14:02

Type	Values Removed	Values Added
References	~~() https://github.com/ggerganov/llama.cpp/commit/b72942fac998672a79a1ae3c03b340f7e629980b -~~	() https://github.com/ggerganov/llama.cpp/commit/b72942fac998672a79a1ae3c03b340f7e629980b - Patch
References	~~() https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-mqp6-7pv6-fqjf -~~	() https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-mqp6-7pv6-fqjf - Vendor Advisory
Summary		(es) llama.cpp proporciona inferencia LLM en C/C++. El miembro "tipo" inseguro en la estructura "rpc_tensor" puede provocar un "desbordamiento de búfer global". Esta vulnerabilidad puede provocar una pérdida de datos de la memoria. La vulnerabilidad está solucionada en b3561.
First Time		Ggerganov llama.cpp Ggerganov
CWE		CWE-401
CVSS	v2 : ~~unknown~~ v3 : ~~5.3~~	v2 : unknown v3 : 7.5
CPE		cpe:2.3:a:ggerganov:llama.cpp::::::::

12 Aug 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-12 15:15

Updated : 2024-08-15 14:02

NVD link : CVE-2024-42477

Mitre link : CVE-2024-42477

CVE.ORG link : CVE-2024-42477

JSON object : View

Products Affected

ggerganov

llama.cpp

CWE

CWE-401

Missing Release of Memory after Effective Lifetime

CWE-125

Out-of-bounds Read

{"id": "CVE-2024-42477", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-08-12T15:15:21.050", "references": [{"url": "https://github.com/ggerganov/llama.cpp/commit/b72942fac998672a79a1ae3c03b340f7e629980b", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-mqp6-7pv6-fqjf", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-401"}]}, {"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "llama.cpp provides LLM inference in C/C++. The unsafe `type` member in the `rpc_tensor` structure can cause `global-buffer-overflow`. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561."}, {"lang": "es", "value": "llama.cpp proporciona inferencia LLM en C/C++. El miembro \"tipo\" inseguro en la estructura \"rpc_tensor\" puede provocar un \"desbordamiento de b\u00fafer global\". Esta vulnerabilidad puede provocar una p\u00e9rdida de datos de la memoria. La vulnerabilidad est\u00e1 solucionada en b3561."}], "lastModified": "2024-08-15T14:02:23.130", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ggerganov:llama.cpp:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "959A4095-3418-4510-B812-74AC693D3DAC", "versionEndExcluding": "b3561"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}