Количество 2
Количество 2
CVE-2025-62609
MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::load_gguf() when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This issue has been patched in version 0.29.4.
GHSA-j842-xgm4-wf88
MLX has Wild Pointer Dereference in load_gguf()
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-62609 MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::load_gguf() when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This issue has been patched in version 0.29.4. | CVSS3: 7.5 | 0% Низкий | 3 месяца назад |
| GHSA-j842-xgm4-wf88 MLX has Wild Pointer Dereference in load_gguf() | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу