b8908
📦 llama-cppView on GitHub →
🐛 1 fixes🔧 1 symbols
Summary
This release addresses a critical security vulnerability (CVE-2026-21869) in the server component related to handling negative n_discard values, preventing a heap-buffer-overflow. Various pre-compiled binaries for different platforms are also provided.
🐛 Bug Fixes
- Fixed a heap-buffer-overflow vulnerability (CVE-2026-21869) in the server component by clamping the negative n_discard value received from client JSON to 0 at the JSON parse boundary.