We Found a Heap Overflow in Llama.cpp's Tokenizer
10 months ago
- #AI
- #vulnerability
- #security
- Pwno discovered a heap overflow vulnerability (CVE-2025-52566) in llama.cpp's tokenizer.
- The vulnerability involves an integer overflow in the tokenizer's size comparison, leading to heap overflow.
- The bug was present for over a year and was fixed within 24 hours after responsible disclosure.
- Exploitation requires specific conditions, such as enabling Jinja templating and crafted input.
- The vulnerability can lead to remote code execution or denial of service.
- Pwno used a multi-agent system and historical security data to identify the vulnerability.
- The discovery highlights the potential of AI in low-level security research.