SB2024110190 - Multiple vulnerabilities in llama.cpp

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Out-of-bounds write (CVE-ID: CVE-2024-42479)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the LLM inference. A local user can trigger an out-of-bounds write and execute arbitrary code on the target system.

2) Out-of-bounds read (CVE-ID: CVE-2024-42478)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in the rpc_tensor structure. A remote attacker can send a specially crafted request to the application, trigger an out-of-bounds read error and read contents of memory on the system.

Remediation

Install update from vendor's website.

References

• https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-wcr5-566p-9cwj
• https://github.com/ggerganov/llama.cpp/commit/b72942fac998672a79a1ae3c03b340f7e629980b
• https://github.com/ggerganov/llama.cpp/security/advisories/GHSA-5vm9-p64x-gqw9