Skip to content

ggml : prevent integer overflow in tensor size calculation #14595

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 9, 2025
Merged

ggml : prevent integer overflow in tensor size calculation #14595

merged 1 commit into from
Jul 9, 2025
+8 −1

Conversation

Yuuoniy
Copy link
Contributor

@Yuuoniy Yuuoniy commented Jul 9, 2025

Add a check to prevent integer overflow when accumulating tensor sizes in gguf_init_from_file_impl.
This avoids potential oob read/write from malformed GGUF files.

@Yuuoniy Yuuoniy requested a review from JohannesGaessler as a code owner July 9, 2025 12:03
@github-actions github-actions bot added the ggml changes relating to the ggml tensor library for machine learning label Jul 9, 2025
Nexesenex added a commit to Nexesenex/croco.cpp that referenced this pull request Jul 9, 2025
@Nexesenex
ggml : prevent integer overflow in tensor size calculation ggml-org#…
0e5f493 
…14595

Author : Yuuoniy
Nexesenex added a commit to Nexesenex/croco.cpp that referenced this pull request Jul 9, 2025
@Nexesenex
ggml : prevent integer overflow in tensor size calculation ggml-org#…
8805942 
…14595

Author : Yuuoniy
@slaren slaren merged commit 26a48ad into ggml-org:master Jul 9, 2025
48 checks passed
gabe-l-hart added a commit to gabe-l-hart/llama.cpp that referenced this pull request Jul 9, 2025
@gabe-l-hart
Merge remote-tracking branch 'origin/master' into GraniteFour
1334c71 
* origin/master:
ggml : prevent integer overflow in gguf tensor size calculation (ggml-org#14595)
model : add skt/A.X-4.0 model vocabulary (ggml-org#14589)
llama : remove unintended whitespace (ggml-org#14592)
model : add support for Falcon-H1 family (ggml-org#14534)
convert : fix smollm3 jinja template (ggml-org#14586)
ryan-mangeno pushed a commit to ryan-mangeno/llama.cpp that referenced this pull request Jul 9, 2025
@Yuuoniy @ryan-mangeno
ggml : prevent integer overflow in gguf tensor size calculation (ggml…
529552d 
…-org#14595)

Signed-off-by: ryan-mangeno <ryanmangeno@gmail.com>
qnixsynapse pushed a commit to menloresearch/llama.cpp that referenced this pull request Jul 10, 2025
@Yuuoniy @qnixsynapse
ggml : prevent integer overflow in gguf tensor size calculation (ggml…
5fe9359 
…-org#14595)
qnixsynapse pushed a commit to menloresearch/llama.cpp that referenced this pull request Jul 10, 2025
@Yuuoniy @qnixsynapse
ggml : prevent integer overflow in gguf tensor size calculation (ggml…
62eb62c 
…-org#14595)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@slaren slaren slaren approved these changes

@JohannesGaessler JohannesGaessler Awaiting requested review from JohannesGaessler JohannesGaessler is a code owner

Assignees
No one assigned
Labels
ggml changes relating to the ggml tensor library for machine learning
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Yuuoniy @slaren