CVE-2026-27940 | ggml-org llama.cpp gguf_init_from_file_impl heap-based overflow (b8146)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability, which was classified as critical, has been found in ggml-org llama.cpp. This affects the function gguf_init_from_file_impl. Performing a manipulation results in heap-based buffer overflow.

This vulnerability is known as CVE-2026-27940. Attacking locally is a requirement. No exploit is available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-27940 | ggml-org llama.cpp gguf_init_from_file_impl heap-based overflow (b8146)

Post correlati

CVE-2024-2581 | Tenda AC10 16.03.10.13 SetStaticRouteCfg fromSetRouteStatic list stack-based overflow

CVE-2024-46704 | Linux Kernel up to 6.10.6 workqueue __flush_work information disclosure (91d09642127a/8bc35475ef1a)

CVE-2024-5204 | Swiss Toolkit for WP up to 1.0.7 on WordPress improper authentication

CVE-2024-8553 | Foreman Template information disclosure