CVE-2025-49847

llama.cpp is an inference of several LLM models in C/C++. Prior to version b5662, an attacker‐supplied GGUF model vocabulary can trigger a buffer overflow in llama.cpp’s vocabulary‐loading code. Specifically, the helper trycopy in llama.cpp/src/vocab.cpp: llamavocab::impl::tokentopiece() casts a very large sizet token length into an int32t, causing the length check (if (length < (int32t)size)) to be bypassed. As a result, memcpy is still called with that oversized size, letting a malicious model overwrite memory beyond the intended buffer. This can lead to arbitrary memory corruption and potential code execution. This issue has been patched in version b5662.

Database specific

{
    "cwe_ids": [
        "CWE-119",
        "CWE-195"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/49xxx/CVE-2025-49847.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git / github.com/ggml-org/llama.cpp

Affected ranges

Type: GIT
Repo: https://github.com/ggml-org/llama.cpp
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

fb85a288d72abbd5e5daa8de96e6f8bfa7b5ab46

Affected versions

Other

b1046

b1047

b1048

b1049

b1050

b1052

b1054

b1056

b1057

b1059

b1060

b1063

b1065

b1067

b1068

b1069

b1071

b1074

b1075

b1076

b1077

b1078

b1079

b1081

b1083

b1085

b1086

b1087

b1089

b1092

b1093

b1094

b1095

b1096

b1098

b1099

b1100

b1101

b1102

b1103

b1104

b1105

b1106

b1107

b1108

b1109

b1111

b1112

b1116

b1117

b1119

b1120

b1121

b1125

b1126

b1127

b1130

b1132

b1137

b1138

b1140

b1142

b1144

b1145

b1146

b1147

b1149

b1150

b1151

b1154

b1155

b1157

b1162

b1163

b1165

b1169

b1170

b1171

b1172

b1173

b1174

b1175

b1176

b1177

b1179

b1180

b1181

b1183

b1184

b1185

b1187

b1188

b1189

b1192

b1193

b1194

b1195

b1197

b1198

b1201

b1202

b1204

b1212

b1213

b1214

b1215

b1216

b1217

b1218

b1219

b1220

b1221

b1222

b1223

b1225

b1226

b1245

b1246

b1247

b1248

b1249

b1250

b1251

b1252

b1253

b1254

b1255

b1256

b1257

b1258

b1260

b1261

b1263

b1266

b1269

b1273

b1275

b1276

b1277

b1280

b1283

b1284

b1285

b1286

b1287

b1288

b1289

b1290

b1291

b1292

b1296

b1297

b1298

b1299

b1300

b1302

b1303

b1304

b1305

b1308

b1309

b1311

b1312

b1314

b1315

b1316

b1317

b1319

b1320

b1321

b1324

b1326

b1327

b1328

b1329

b1331

b1332

b1333

b1334

b1336

b1339

b1340

b1341

b1342

b1344

b1345

b1346

b1349

b1350

b1353

b1354

b1355

b1356

b1357

b1358

b1359

b1360

b1363

b1365

b1366

b1367

b1368

b1369

b1370

b1372

b1375

b1377

b1378

b1379

b1380

b1381

b1382

b1383

b1384

b1385

b1387

b1390

b1391

b1393

b1394

b1395

b1396

b1397

b1398

b1400

b1403

b1404

b1405

b1406

b1407

b1408

b1409

b1410

b1412

b1413

b1414

b1416

b1419

b1420

b1421

b1422

b1423

b1424

b1425

b1426

b1427

b1428

b1429

b1430

b1431

b1432

b1433

b1434

b1435

b1436

b1437

b1440

b1442

b1443

b1444

b1445

b1446

b1448

b1449

b1450

b1453

b1454

b1455

b1456

b1457

b1458

b1459

b1460

b1461

b1462

b1463

b1464

b1465

b1466

b1467

b1468

b1469

b1470

b1471

b1472

b1473

b1474

b1476

b1477

b1481

b1483

b1485

b1486

b1487

b1488

b1489

b1491

b1492

b1493

b1494

b1495

b1496

b1497

b1499

b1500

b1502

b1503

b1505

b1509

b1510

b1512

b1513

b1515

b1516

b1517

b1518

b1519

b1520

b1521

b1522

b1523

b1524

b1525

b1526

b1528

b1529

b1532

b1533

b1534

b1535

b1536

b1538

b1539

b1541

b1542

b1543

b1544

b1545

b1546

b1547

b1550

b1552

b1554

b1555

b1557

b1559

b1560

b1561

b1563

b1564

b1566

b1567

b1569

b1570

b1571

b1573

b1574

b1575

b1579

b1581

b1583

b1587

b1589

b1590

b1591

b1592

b1593

b1595

b1596

b1597

b1598

b1599

b1600

b1601

b1602

b1604

b1605

b1606

b1607

b1608

b1609

b1610

b1611

b1612

b1613

b1614

b1615

b1616

b1617

b1618

b1619

b1620

b1621

b1623

b1624

b1625

b1626

b1627

b1629

b1631

b1632

b1633

b1634

b1637

b1638

b1640

b1641

b1642

b1643

b1644

b1645

b1646

b1647

b1648

b1649

b1650

b1651

b1652

b1654

b1656

b1657

b1658

b1659

b1660

b1661

b1662

b1663

b1664

b1665

b1666

b1667

b1670

b1671

b1672

b1673

b1675

b1676

b1677

b1678

b1680

b1681

b1682

b1684

b1685

b1686

b1687

b1688

b1689

b1690

b1691

b1692

b1693

b1694

b1695

b1696

b1697

b1698

b1699

b1700

b1701

b1702

b1703

b1705

b1707

b1708

b1709

b1710

b1713

b1715

b1716

b1717

b1718

b1719

b1720

b1721

b1722

b1723

b1724

b1725

b1726

b1727

b1728

b1729

b1730

b1731

b1732

b1742

b1743

b1746

b1747

b1748

b1749

b1750

b1751

b1752

b1759

b1760

b1761

b1763

b1765

b1766

b1767

b1768

b1770

b1773

b1775

b1777

b1778

b1779

b1781

b1782

b1783

b1784

b1785

b1786

b1787

b1788

b1789

b1791

b1792

b1794

b1795

b1796

b1800

b1803

b1804

b1806

b1807

b1808

b1810

b1818

b1819

b1820

b1821

b1822

b1823

b1824

b1825

b1826

b1827

b1828

b1829

b1830

b1831

b1832

b1833

b1834

b1836

b1837

b1838

b1840

b1841

b1842

b1843

b1844

b1848

b1849

b1850

b1851

b1853

b1854

b1855

b1856

b1857

b1858

b1859

b1860

b1861

b1862

b1863

b1864

b1865

b1866

b1867

b1868

b1869

b1871

b1872

b1873

b1874

b1875

b1876

b1878

b1879

b1880

b1881

b1882

b1884

b1885

b1886

b1887

b1889

b1891

b1892

b1893

b1939

b1940

b1941

b1942

b1943

b1950

b1951

b1952

b1953

b1954

b1956

b1957

b1958

b1959

b1960

b1961

b1963

b1964

b1965

b1966

b1969

b1971

b1974

b1975

b1976

b1979

b1980

b1981

b1982

b1983

b1984

b1985

b1987

b1988

b1989

b1990

b1992

b1993

b1995

b1996

b1998

b1999

b2000

b2001

b2002

b2004

b2005

b2006

b2007

b2008

b2012

b2013

b2014

b2015

b2016

b2022

b2026

b2027

b2028

b2029

b2030

b2031

b2032

b2033

b2034

b2035

b2036

b2037

b2038

b2039

b2040

b2041

b2042

b2043

b2045

b2047

b2050

b2051

b2053

b2054

b2055

b2057

b2058

b2059

b2060

b2061

b2062

b2066

b2067

b2068

b2070

b2071

b2072

b2074

b2076

b2077

b2078

b2079

b2081

b2082

b2083

b2084

b2086

b2087

b2090

b2091

b2093

b2094

b2096

b2098

b2100

b2101

b2103

b2104

b2105

b2106

b2107

b2109

b2110

b2112

b2114

b2116

b2117

b2118

b2119

b2121

b2122

b2123

b2124

b2125

b2127

b2128

b2129

b2130

b2131

b2133

b2134

b2135

b2136

b2137

b2138

b2139

b2140

b2141

b2142

b2143

b2144

b2167

b2168

b2172

b2174

b2175

b2176

b2177

b2178

b2179

b2180

b2181

b2182

b2184

b2185

b2186

b2187

b2189

b2190

b2191

b2193

b2194

b2196

b2197

b2201

b2202

b2203

b2204

b2205

b2212

b2213

b2214

b2215

b2217

b2219

b2220

b2221

b2222

b2223

b2226

b2228

b2230

b2231

b2232

b2233

b2234

b2235

b2237

b2239

b2240

b2241

b2243

b2245

b2246

b2247

b2248

b2249

b2251

b2252

b2253

b2254

b2256

b2257

b2258

b2259

b2261

b2262

b2263

b2264

b2266

b2267

b2268

b2269

b2270

b2271

b2272

b2274

b2275

b2276

b2277

b2278

b2279

b2280

b2281

b2282

b2283

b2284

b2286

b2287

b2288

b2291

b2293

b2294

b2295

b2296

b2297

b2298

b2299

b2300

b2301

b2302

b2303

b2304

b2305

b2306

b2308

b2309

b2311

b2312

b2313

b2314

b2316

b2318

b2319

b2320

b2321

b2323

b2324

b2325

b2327

b2329

b2330

b2331

b2333

b2334

b2343

b2345

b2346

b2350

b2352

b2354

b2355

b2356

b2357

b2358

b2359

b2360

b2361

b2362

b2363

b2364

b2365

b2366

b2367

b2368

b2369

b2370

b2371

b2372

b2374

b2376

b2377

b2378

b2380

b2381

b2382

b2384

b2385

b2386

b2387

b2389

b2391

b2392

b2393

b2394

b2395

b2396

b2397

b2398

b2399

b2400

b2402

b2403

b2404

b2405

b2406

b2407

b2408

b2409

b2410

b2411

b2412

b2413

b2414

b2416

b2417

b2418

b2419

b2420

b2422

b2423

b2424

b2427

b2428

b2430

b2431

b2432

b2433

b2434

b2435

b2436

b2437

b2438

b2439

b2440

b2444

b2447

b2448

b2449

b2450

b2453

b2454

b2455

b2456

b2457

b2458

b2459

b2460

b2461

b2462

b2463

b2465

b2466

b2468

b2471

b2474

b2475

b2476

b2478

b2479

b2480

b2481

b2487

b2489

b2491

b2493

b2494

b2495

b2496

b2497

b2499

b2501

b2502

b2503

b2508

b2509

b2510

b2514

b2516

b2517

b2518

b2520

b2521

b2523

b2526

b2527

b2528

b2529

b2531

b2534

b2536

b2538

b2540

b2541

b2542

b2543

b2548

b2551

b2554

b2563

b2566

b2567

b2568

b2570

b2573

b2576

b2578

b2579

b2581

b2582

b2585

b2586

b2589

b2590

b2608

b2611

b2612

b2613

b2615

b2619

b2620

b2629

b2630

b2632

b2633

b2636

b2638

b2645

b2646

b2647

b2655

b2656

b2657

b2658

b2660

b2661

b2663

b2664

b2665

b2666

b2667

b2669

b2670

b2671

b2673

b2674

b2675

b2676

b2678

b2679

b2680

b2681

b2683

b2684

b2685

b2686

b2687

b2688

b2690

b2691

b2692

b2694

b2696

b2697

b2698

b2699

b2700

b2701

b2702

b2707

b2708

b2709

b2710

b2712

b2714

b2715

b2716

b2717

b2724

b2727

b2728

b2729

b2730

b2731

b2734

b2735

b2736

b2737

b2740

b2746

b2747

b2748

b2749

b2750

b2751

b2753

b2754

b2755

b2756

b2757

b2760

b2761

b2763

b2764

b2766

b2767

b2768

b2769

b2771

b2772

b2773

b2774

b2775

b2776

b2777

b2779

b2780

b2781

b2782

b2783

b2784

b2785

b2786

b2787

b2789

b2791

b2793

b2794

b2797

b2800

b2803

b2804

b2805

b2806

b2808

b2809

b2811

b2812

b2813

b2815

b2816

b2817

b2818

b2820

b2821

b2822

b2824

b2826

b2828

b2830

b2831

b2834

b2835

b2836

b2837

b2838

b2839

b2840

b2842

b2843

b2844

b2845

b2846

b2847

b2848

b2852

b2854

b2859

b2860

b2861

b2862

b2864

b2865

b2867

b2868

b2870

b2871

b2874

b2875

b2876

b2877

b2878

b2879

b2884

b2885

b2886

b2889

b2890

b2891

b2892

b2893

b2894

b2897

b2899

b2901

b2906

b2908

b2909

b2910

b2913

b2914

b2915

b2916

b2917

b2918

b2921

b2922

b2923

b2926

b2927

b2928

b2929

b2930

b2932

b2933

b2934

b2936

b2937

b2938

b2939

b2940

b2941

b2943

b2945

b2946

b2948

b2949

b2950

b2952

b2953

b2955

b2956

b2958

b2961

b2962

b2963

b2964

b2965

b2966

b2967

b2968

b2969

b2970

b2972

b2973

b2974

b2976

b2978

b2979

b2981

b2982

b2984

b2985

b2986

b2988

b2989

b2992

b2993

b2994

b2995

b2996

b2998

b3001

b3003

b3004

b3006

b3007

b3008

b3010

b3011

b3012

b3014

b3015

b3018

b3019

b3021

b3023

b3024

b3025

b3026

b3027

b3028

b3029

b3030

b3033

b3035

b3036

b3037

b3038

b3039

b3040

b3042

b3044

b3045

b3046

b3051

b3056

b3057

b3058

b3063

b3064

b3065

b3066

b3067

b3070

b3071

b3072

b3073

b3074

b3075

b3076

b3077

b3078

b3079

b3080

b3082

b3083

b3084

b3085

b3086

b3087

b3088

b3089

b3091

b3092

b3130

b3131

b3134

b3135

b3138

b3139

b3140

b3141

b3143

b3145

b3146

b3147

b3148

b3149

b3150

b3151

b3152

b3153

b3154

b3156

b3158

b3159

b3162

b3163

b3164

b3166

b3167

b3168

b3169

b3171

b3172

b3173

b3175

b3177

b3178

b3179

b3180

b3181

b3182

b3183

b3184

b3186

b3187

b3188

b3189

b3190

b3193

b3194

b3195

b3196

b3197

b3199

b3201

b3202

b3203

b3204

b3205

b3206

b3208

b3209

b3211

b3212

b3216

b3218

b3219

b3220

b3222

b3223

b3226

b3227

b3228

b3229

b3230

b3231

b3232

b3233

b3240

b3241

b3242

b3243

b3245

b3246

b3248

b3249

b3250

b3252

b3254

b3256

b3258

b3259

b3260

b3261

b3262

b3263

b3264

b3265

b3266

b3267

b3268

b3269

b3273

b3274

b3276

b3278

b3279

b3280

b3282

b3283

b3284

b3285

b3286

b3287

b3289

b3290

b3291

b3292

b3293

b3294

b3295

b3303

b3304

b3305

b3306

b3307

b3309

b3311

b3314

b3315

b3316

b3317

b3322

b3324

b3325

b3327

b3328

b3332

b3333

b3334

b3340

b3341

b3342

b3345

b3347

b3353

b3354

b3355

b3356

b3358

b3361

b3362

b3363

b3365

b3366

b3367

b3368

b3369

b3370

b3371

b3373

b3374

b3375

b3376

b3378

b3381

b3382

b3383

b3384

b3385

b3386

b3387

b3389

b3392

b3393

b3394

b3396

b3398

b3400

b3402

b3403

b3405

b3406

b3407

b3408

b3411

b3412

b3415

b3416

b3417

b3418

b3419

b3420

b3421

b3422

b3423

b3425

b3426

b3427

b3428

b3433

b3434

b3436

b3437

b3438

b3440

b3441

b3442

b3445

b3447

b3449

b3450

b3451

b3452

b3456

b3458

b3459

b3460

b3461

b3462

b3463

b3464

b3465

b3466

b3467

b3468

b3469

b3470

b3471

b3472

b3479

b3481

b3482

b3483

b3484

b3485

b3486

b3487

b3488

b3489

b3490

b3493

b3495

b3496

b3497

b3498

b3499

b3500

b3501

b3502

b3503

b3504

b3505

b3506

b3508

b3509

b3510

b3511

b3512

b3515

b3516

b3517

b3518

b3519

b3520

b3522

b3524

b3525

b3527

b3528

b3529

b3531

b3532

b3534

b3535

b3536

b3537

b3538

b3539

b3540

b3541

b3542

b3543

b3547

b3551

b3556

b3557

b3559

b3560

b3561

b3563

b3564

b3565

b3566

b3567

b3568

b3570

b3571

b3573

b3574

b3575

b3576

b3577

b3578

b3579

b3580

b3581

b3582

b3583

b3584

b3585

b3587

b3588

b3589

b3590

b3591

b3592

b3593

b3595

b3598

b3599

b3600

b3603

b3604

b3606

b3607

b3608

b3609

b3610

b3611

b3612

b3613

b3614

b3615

b3616

b3617

b3618

b3619

b3620

b3621

b3622

b3623

b3625

b3627

b3628

b3629

b3630

b3631

b3632

b3633

b3634

b3635

b3636

b3639

b3643

b3644

b3645

b3647

b3649

b3651

b3652

b3654

b3655

b3656

b3658

b3661

b3664

b3665

b3666

b3667

b3668

b3669

b3671

b3672

b3673

b3674

b3675

b3676

b3677

b3678

b3680

b3681

b3682

b3683

b3684

b3685

b3686

b3687

b3688

b3699

b3700

b3701

b3702

b3703

b3704

b3705

b3706

b3707

b3711

b3713

b3714

b3715

b3716

b3717

b3718

b3720

b3721

b3722

b3723

b3725

b3726

b3727

b3728

b3729

b3731

b3733

b3735

b3736

b3737

b3738

b3740

b3743

b3744

b3746

b3747

b3748

b3749

b3750

b3751

b3752

b3753

b3754

b3755

b3756

b3757

b3758

b3759

b3760

b3761

b3763

b3764

b3765

b3766

b3767

b3769

b3770

b3771

b3772

b3774

b3775

b3777

b3778

b3779

b3781

b3782

b3783

b3785

b3786

b3787

b3788

b3789

b3790

b3795

b3796

b3797

b3798

b3799

b3800

b3801

b3802

b3803

b3804

b3805

b3806

b3807

b3808

b3810

b3811

b3812

b3813

b3814

b3816

b3817

b3818

b3820

b3821

b3822

b3823

b3824

b3825

b3827

b3828

b3829

b3831

b3832

b3834

b3835

b3837

b3841

b3847

b3848

b3849

b3853

b3855

b3856

b3861

b3863

b3864

b3865

b3866

b3867

b3868

b3869

b3870

b3872

b3873

b3874

b3878

b3879

b3880

b3883

b3886

b3887

b3889

b3892

b3895

b3896

b3898

b3899

b3901

b3902

b3903

b3904

b3905

b3906

b3907

b3909

b3911

b3912

b3914

b3916

b3917

b3920

b3921

b3922

b3923

b3925

b3926

b3927

b3928

b3930

b3931

b3932

b3933

b3935

b3936

b3937

b3938

b3939

b3940

b3941

b3942

b3943

b3946

b3947

b3948

b3949

b3950

b3952

b3957

b3958

b3959

b3960

b3961

b3962

b3964

b3965

b3967

b3969

b3970

b3971

b3972

b3974

b3975

b3976

b3977

b3978

b3982

b3983

b3984

b3985

b3987

b3988

b3989

b3990

b3991

b3994

b3995

b3996

b3997

b3998

b3999

b4000

b4001

b4002

b4003

b4005

b4006

b4007

b4009

b4010

b4011

b4013

b4014

b4015

b4016

b4019

b4020

b4023

b4024

b4025

b4026

b4027

b4032

b4033

b4034

b4036

b4037

b4038

b4040

b4041

b4042

b4044

b4048

b4050

b4052

b4053

b4055

b4056

b4057

b4058

b4059

b4060

b4061

b4062

b4065

b4066

b4067

b4068

b4069

b4071

b4073

b4075

b4076

b4077

b4078

b4079

b4080

b4081

b4082

b4085

b4087

b4088

b4091

b4092

b4093

b4094

b4095

b4096

b4098

b4100

b4102

b4103

b4111

b4112

b4113

b4114

b4115

b4118

b4120

b4122

b4126

b4127

b4128

b4129

b4130

b4131

b4132

b4133

b4134

b4137

b4138

b4139

b4141

b4142

b4143

b4148

b4149

b4150

b4151

b4153

b4154

b4157

b4160

b4161

b4162

b4163

b4164

b4167

b4168

b4169

b4170

b4171

b4172

b4173

b4174

b4175

b4176

b4177

b4178

b4179

b4191

b4195

b4196

b4200

b4201

b4202

b4203

b4204

b4205

b4206

b4208

b4209

b4210

b4211

b4212

b4214

b4215

b4216

b4217

b4218

b4219

b4220

b4221

b4222

b4224

b4226

b4227

b4230

b4231

b4233

b4234

b4239

b4240

b4242

b4243

b4246

b4248

b4253

b4254

b4255

b4256

b4258

b4260

b4261

b4262

b4265

b4266

b4267

b4271

b4272

b4273

b4276

b4279

b4280

b4281

b4282

b4283

b4284

b4285

b4287

b4288

b4290

b4291

b4292

b4293

b4295

b4296

b4297

b4298

b4299

b4300

b4301

b4302

b4304

b4311

b4312

b4314

b4315

b4317

b4318

b4319

b4320

b4321

b4324

b4325

b4326

b4327

b4329

b4331

b4333

b4337

b4338

b4341

b4342

b4343

b4348

b4349

b4350

b4351

b4353

b4354

b4357

b4358

b4359

b4360

b4361

b4362

b4363

b4365

b4366

b4367

b4368

b4369

b4371

b4372

b4375

b4376

b4378

b4379

b4380

b4381

b4382

b4383

b4384

b4385

b4386

b4387

b4388

b4389

b4390

b4391

b4392

b4393

b4394

b4396

b4397

b4398

b4399

b4400

b4402

b4403

b4404

b4406

b4409

b4411

b4414

b4415

b4416

b4417

b4418

b4419

b4420

b4421

b4422

b4423

b4424

b4425

b4426

b4428

b4430

b4431

b4432

b4433

b4434

b4435

b4437

b4438

b4439

b4440

b4443

b4445

b4446

b4447

b4450

b4451

b4453

b4456

b4457

b4458

b4464

b4465

b4466

b4467

b4468

b4474

b4475

b4481

b4485

b4487

b4488

b4491

b4493

b4497

b4499

b4500

b4501

b4502

b4503

b4504

b4506

b4508

b4509

b4510

b4512

b4513

b4514

b4516

b4518

b4519

b4520

b4521

b4522

b4523

b4524

b4525

b4526

b4527

b4528

b4529

b4532

b4533

b4534

b4535

b4536

b4537

b4538

b4539

b4542

b4543

b4545

b4546

b4547

b4548

b4549

b4550

b4552

b4557

b4559

b4560

b4562

b4564

b4565

b4566

b4567

b4568

b4569

b4570

b4572

b4574

b4575

b4576

b4580

b4581

b4583

b4585

b4586

b4588

b4589

b4594

b4595

b4598

b4599

b4600

b4601

b4603

b4604

b4605

b4606

b4607

b4608

b4609

b4610

b4611

b4613

b4614

b4615

b4616

b4617

b4618

b4619

b4620

b4621

b4623

b4628

b4631

b4633

b4634

b4636

b4637

b4639

b4640

b4641

b4642

b4643

b4644

b4646

b4647

b4648

b4649

b4651

b4657

b4658

b4659

b4660

b4661

b4662

b4663

b4666

b4667

b4671

b4675

b4676

b4677

b4678

b4679

b4681

b4682

b4683

b4686

b4688

b4689

b4692

b4694

b4695

b4696

b4698

b4699

b4702

b4704

b4705

b4706

b4707

b4708

b4710

b4712

b4713

b4714

b4716

b4717

b4718

b4719

b4720

b4721

b4722

b4724

b4727

b4728

b4730

b4731

b4732

b4733

b4734

b4735

b4738

b4739

b4742

b4743

b4745

b4746

b4747

b4749

b4751

b4753

b4754

b4755

b4756

b4759

b4760

b4761

b4762

b4763

b4764

b4765

b4767

b4768

b4769

b4770

b4771

b4773

b4774

b4775

b4776

b4777

b4778

b4783

b4784

b4785

b4786

b4788

b4789

b4790

b4792

b4793

b4796

b4797

b4798

b4799

b4800

b4801

b4803

b4804

b4805

b4806

b4818

b4819

b4820

b4821

b4823

b4824

b4826

b4827

b4829

b4830

b4831

b4832

b4833

b4834

b4835

b4836

b4837

b4846

b4847

b4848

b4849

b4851

b4853

b4854

b4855

b4856

b4859

b4860

b4861

b4863

b4864

b4865

b4867

b4868

b4869

b4870

b4871

b4872

b4873

b4874

b4875

b4876

b4877

b4879

b4880

b4882

b4884

b4885

b4886

b4888

b4889

b4891

b4892

b4893

b4895

b4896

b4897

b4898

b4899

b4900

b4901

b4902

b4903

b4905

b4907

b4908

b4909

b4910

b4911

b4912

b4913

b4914

b4915

b4916

b4919

b4920

b4921

b4923

b4924

b4925

b4926

b4927

b4929

b4930

b4932

b4933

b4934

b4935

b4936

b4937

b4938

b4939

b4940

b4942

b4944

b4945

b4946

b4947

b4948

b4951

b4953

b4956

b4957

b4958

b4961

b4963

b4964

b4966

b4967

b4969

b4970

b4972

b4974

b4976

b4977

b4978

b4980

b4981

b4982

b4984

b4985

b4986

b4987

b4988

b4990

b4991

b4992

b4997

b4998

b4999

b5001

b5002

b5003

b5004

b5005

b5006

b5009

b5010

b5012

b5013

b5015

b5016

b5017

b5018

b5019

b5021

b5022

b5025

b5026

b5028

b5029

b5030

b5031

b5032

b5033

b5034

b5035

b5036

b5037

b5038

b5039

b5041

b5043

b5045

b5046

b5049

b5050

b5052

b5053

b5054

b5055

b5056

b5057

b5058

b5059

b5060

b5061

b5062

b5064

b5066

b5071

b5072

b5073

b5074

b5076

b5078

b5079

b5080

b5081

b5082

b5083

b5084

b5085

b5086

b5089

b5092

b5093

b5094

b5096

b5097

b5099

b5106

b5107

b5108

b5113

b5114

b5115

b5116

b5117

b5118

b5119

b5120

b5121

b5122

b5123

b5124

b5125

b5126

b5127

b5129

b5131

b5132

b5133

b5134

b5135

b5136

b5137

b5138

b5140

b5141

b5142

b5143

b5144

b5145

b5146

b5147

b5148

b5149

b5150

b5151

b5152

b5153

b5155

b5156

b5158

b5159

b5160

b5161

b5162

b5163

b5164

b5165

b5166

b5169

b5170

b5171

b5173

b5174

b5175

b5176

b5177

b5178

b5180

b5181

b5184

b5185

b5186

b5187

b5188

b5189

b5190

b5191

b5192

b5193

b5194

b5195

b5196

b5197

b5198

b5199

b5200

b5201

b5202

b5204

b5205

b5207

b5208

b5209

b5210

b5211

b5212

b5213

b5214

b5215

b5216

b5217

b5218

b5219

b5220

b5221

b5222

b5223

b5225

b5226

b5228

b5230

b5231

b5232

b5233

b5235

b5236

b5237

b5239

b5241

b5242

b5243

b5246

b5248

b5249

b5250

b5252

b5253

b5254

b5255

b5257

b5258

b5259

b5260

b5261

b5265

b5266

b5267

b5269

b5270

b5271

b5272

b5273

b5274

b5275

b5276

b5277

b5278

b5279

b5280

b5281

b5283

b5284

b5286

b5287

b5289

b5292

b5293

b5295

b5296

b5297

b5298

b5299

b5300

b5301

b5302

b5303

b5306

b5308

b5309

b5310

b5311

b5313

b5315

b5317

b5318

b5320

b5321

b5322

b5323

b5324

b5325

b5326

b5327

b5328

b5329

b5330

b5331

b5332

b5333

b5334

b5335

b5336

b5338

b5340

b5341

b5342

b5344

b5345

b5346

b5347

b5349

b5350

b5351

b5352

b5353

b5354

b5355

b5356

b5357

b5358

b5359

b5360

b5361

b5363

b5365

b5366

b5367

b5368

b5369

b5370

b5371

b5372

b5377

b5378

b5379

b5380

b5381

b5382

b5384

b5385

b5387

b5388

b5390

b5391

b5392

b5394

b5395

b5400

b5401

b5402

b5404

b5405

b5406

b5409

b5410

b5411

b5412

b5414

b5415

b5416

b5417

b5421

b5422

b5423

b5425

b5426

b5427

b5429

b5430

b5431

b5432

b5434

b5435

b5436

b5437

b5438

b5439

b5440

b5441

b5442

b5443

b5444

b5446

b5448

b5449

b5450

b5451

b5452

b5453

b5454

b5456

b5458

b5459

b5460

b5461

b5462

b5463

b5464

b5465

b5466

b5468

b5471

b5472

b5473

b5474

b5475

b5476

b5477

b5478

b5479

b5480

b5481

b5483

b5484

b5486

b5488

b5489

b5490

b5492

b5493

b5494

b5495

b5497

b5498

b5499

b5501

b5502

b5503

b5504

b5505

b5506

b5508

b5509

b5510

b5512

b5513

b5514

b5515

b5516

b5517

b5519

b5522

b5524

b5526

b5527

b5529

b5530

b5532

b5533

b5534

b5535

b5537

b5538

b5539

b5540

b5541

b5543

b5544

b5545

b5546

b5547

b5548

b5551

b5552

b5554

b5555

b5556

b5558

b5559

b5560

b5568

b5569

b5571

b5572

b5573

b5574

b5575

b5576

b5577

b5578

b5579

b5580

b5581

b5584

b5585

b5586

b5587

b5588

b5589

b5590

b5591

b5592

b5593

b5595

b5596

b5598

b5600

b5601

b5602

b5603

b5604

b5606

b5608

b5609

b5610

b5612

b5613

b5614

b5615

b5616

b5617

b5618

b5620

b5621

b5622

b5624

b5625

b5627

b5629

b5630

b5631

b5632

b5633

b5634

b5636

b5637

b5638

b5639

b5640

b5641

b5642

b5644

b5645

b5646

b5648

b5649

b5650

b5651

b5652

b5653

b5654

b5655

b5657

b5659

ggu

gguf

gguf-py

master-0035858

master-003ba2f

master-018f227

master-01a297b

master-02c5b27

master-02d6988

master-02f9d96

master-03f7e33

master-04aaae1

master-04c6f5e

master-051c70d

master-051e1b0

master-061f5f8

master-0728c5a

master-074bea2

master-07aaa0f

master-07e9ace

master-084e2f0

master-0919a0f

master-097e121

master-09aecbf

master-0ad9646

master-0b2da20

master-0b366e7

master-0b5a935

master-0ba76c1

master-0bc2cdf

master-0be54f7

master-0bf7cf1

master-0c06204

master-0c44427

master-0c56923

master-0cd22e1

master-0d054e2

master-0db14fe

master-0df7d63

master-0e018fe

master-0e07e6a

master-0e6cbff

master-0ecb1bb

master-0ede372

master-0f07cac

master-0f1b21c

master-10151be

master-106faaf

master-10f19c1

master-1123f7f

master-11d9023

master-11f3ca0

master-1215ed7

master-129d844

master-12b5900

master-136476e

master-13b0c68

master-13c351a

master-13fe9d2

master-1481a9c

master-1623a6e

master-1638757

master-16b9cd1

master-17366df

master-173d0e6

master-17c10ac

master-180b693

master-182af73

master-18b3562

master-1972616

master-1a94186

master-1aa18ef

master-1b0fd45

master-1b107b8

master-1b6efea

master-1b78ed2

master-1bfc153

master-1cd06fa

master-1d0824b

master-1d08882

master-1d16309

master-1e3abfc

master-1e3bc52

master-1f0414f

master-1f48b0a

master-1fcdcc2

master-1fed755

master-2005469

master-20568fe

master-206e01d

master-20d7740

master-20e1e84

master-20fbf2a

master-214b6a3

master-22213a1

master-226255b

master-229aab3

master-2347463

master-2347e45

master-23c7c6f

master-23fc5c2

master-2456837

master-2483676

master-2485d7a

master-254a7a7

master-25d43e0

master-25d7abb

master-265db98

master-2663d2c

master-294f424

master-29b7baa

master-29cf559

master-2a2e63c

master-2a5ee02

master-2a98bc1

master-2b26469

master-2b5eb72

master-2bb992f

master-2bdc096

master-2c9380d

master-2d099e5

master-2d13786

master-2d3481c

master-2d43387

master-2d5db48

master-2d7bf11

master-2dbf518

master-2e17dfd

master-2e664f1

master-2e6cd4b

master-2ec8342

master-2edbdb0

master-2f7bf7d

master-2f7c8e0

master-2f8cd97

master-2f9cf97

master-2feb893

master-303f580

master-305ba6f

master-305eb5a

master-31572d9

master-315a95a

master-3173a62

master-31cfbb1

master-32c5411

master-3323112

master-334637e

master-337aea1

master-33e35b8

master-348acf1

master-3498588

master-34a14b2

master-34ab526

master-34c1072

master-34d9f22

master-3525899

master-3559433

master-35a8491

master-3602ac4

master-36680f6

master-368d0c8

master-36b4f7e

master-36d0753

master-36d19a6

master-37e257c

master-38de86a

master-3924088

master-3b126f6

master-3bbc1a1

master-3bcc129

master-3cd8dde

master-3d01122

master-3d59769

master-3d59ec5

master-3d9a551

master-3de84b2

master-3e5aa8a

master-3e6e70d

master-3ebb009

master-3f12231

master-4122dff

master-415e99f

master-41654ef

master-41c6741

master-4262742

master-4274722

master-42c7c2e

master-42f70cb

master-4304bd3

master-4329d1a

master-436e561

master-437e778

master-44f906e

master-459e93c

master-45a1b07

master-46088f7

master-461ba9e

master-4640eff

master-468ea24

master-46ef5b5

master-47f61aa

master-481044d

master-481f793

master-483bab2

master-4870e45

master-489537e

master-4953e90

master-49e7cb5

master-4b8efff

master-4bfcc85

master-4de0334

master-4e7464e

master-4f0154b

master-4f06592

master-4f6b60c

master-4f9c43e

master-502a400

master-50a8a2a

master-50cb666

master-50fae10

master-513f861

master-519c981

master-5220a99

master-527b6fb

master-5290c38

master-53c8434

master-53dbba7

master-53dc399

master-5488fb7

master-54bb60e

master-54e3bc7

master-5517d6e

master-55390bc

master-553fd4d

master-555275a

master-55bc5f0

master-563cdc3

master-5656d10

master-56e659a

master-5743ca8

master-574406d

master-57921ca

master-57cd694

master-585d91a

master-58970a4

master-58b367c

master-58e6c9f

master-590250f

master-5a5aeb1

master-5a5f8b1

master-5a8c4f6

master-5addcb1

master-5af8e32

master-5b2b2dc

master-5b351e9

master-5b70e7d

master-5b9ccaf

master-5bf2a27

master-5c19c70

master-5c64a09

master-5d5817c

master-5e9ff54

master-5ea4339

master-5ec8dd5

master-5ecff35

master-5f631c2

master-601a033

master-604b8bd

master-60baff7

master-6232f2d

master-62959e7

master-62cfc54

master-6381d4e

master-63d2046

master-6432aab

master-6456a4e

master-6463955

master-64cc19b

master-65bdd52

master-6667401

master-66841fd

master-66874d4

master-66aab46

master-672dda1

master-6769e94

master-67c7779

master-684da25

master-6979666

master-6986c78

master-698efad

master-698f7b5

master-699b1ad

master-69b34a0

master-69b7402

master-69c9229

master-6a9661e

master-6b6dbc8

master-6b8312e

master-6bc4400

master-6c24870

master-6cbf9df

master-6df1f59

master-6e7cca4

master-6f1ee4b

master-6f79699

master-70269ca

master-70f01cb

master-7242140

master-7296c96

master-73643f5

master-738ace3

master-7487137

master-74a6d92

master-74d4cfa

master-7513b7b

master-7552ac5

master-7568d1a

master-76a8849

master-773ee24

master-777f42b

master-7780e4f

master-77a7340

master-77efdf5

master-78a3d13

master-794db3e

master-799fdc1

master-79b2d5b

master-79f634a

master-7a32fcb

master-7a74dee

master-7a87d31

master-7a9b6c3

master-7b8dbcb

master-7cdd30b

master-7cf54e1

master-7d87381

master-7dabc66

master-7e312f1

master-7e4ea5b

master-7ee76e4

master-7f0e9a7

master-7f4c5c6

master-7f9753f

master-7fc50c0

master-7ff0dcd

master-800c963

master-81040f1

master-81844fb

master-8207214

master-83df563

master-8432d4d

master-84525e7

master-84e09a7

master-8520fc3

master-857308d

master-8596af4

master-859fee6

master-863f65e

master-8687c1f

master-86aeb27

master-86c3219

master-86c7571

master-872c365

master-875086b

master-87a6f84

master-884e7d7

master-8944a13

master-8a0f867

master-8a1756a

master-8a203f9

master-8a88e58

master-8ab8ba6

master-8b67998

master-8c2ec5e

master-8c3ffc2

master-8c9be35

master-8cda5c9

master-8cf9f34

master-8d4a855

master-8dae7ce

master-8e4364f

master-905d87b

master-9082b5d

master-90b19bd

master-90cc59d

master-91171b8

master-916a9ac

master-9190e8e

master-9225bae

master-924dd22

master-9254920

master-928480e

master-92a6e13

master-93265e9

master-93356bd

master-9361803

master-939ad2d

master-9411288

master-94c5652

master-9538524

master-9560655

master-957c8ae

master-95a6c59

master-95ea26f

master-96f9c05

master-9794052

master-986b6ce

master-98ed165

master-99009e7

master-99c5b27

master-99d29c0

master-9b0a4d4

master-9baf9ef

master-9ca4abe

master-9cbc404

master-9cbf50c

master-9cf022a

master-9d0693b

master-9d23589

master-9d2382b

master-9daff41

master-9e17072

master-9e232f0

master-9e4475f

master-9ecb30f

master-9f8dbc4

master-9ff334f

master-a09f919

master-a113689

master-a140219

master-a192860

master-a316a42

master-a3a2a0e

master-a3b85b2

master-a4755cf

master-a5c42c4

master-a5d30b1

master-a670464

master-a6bdc47

master-a73ccf1

master-a791a68

master-a7e20ed

master-a814d04

master-a84ab1d

master-a872a2b

master-a940458

master-a9559bf

master-aa485ce

master-aacdbd4

master-aaf3b23

master-ab0e26b

master-ac0cd25

master-ac3b886

master-ac7876a

master-acc111c

master-acfc547

master-ad072fc

master-ad5fd5b

master-ae178ab

master-ae44e23

master-ae9663f

master-afd220d

master-affc76e

master-b061ba9

master-b19edd5

master-b1ee8f5

master-b1f4290

master-b241649

master-b24c304

master-b391579

master-b3f138d

master-b3f460e

master-b41b4ca

master-b47b8a9

master-b4c6f46

master-b50b570

master-b51c717

master-b5472ea

master-b5c9295

master-b5fe67f

master-b6e7f9b

master-b764743

master-b772bba

master-b853d45

master-b8ad1b6

master-b8c8dda

master-b8ee340

master-b922bc3

master-b925f1f

master-b97ca43

master-b9b7d94

master-b9fd7ee

master-ba4e85a

master-bac6699

master-bb051d9

master-bbca06e

master-bbef282

master-bd34cdd

master-bda4d7c

master-be2301b

master-be87b6e

master-bed9275

master-bf4b22f

master-bf83bff

master-c0bb1d3

master-c12b14b

master-c1f8850

master-c238b58

master-c2a08f8

master-c2b25b6

master-c2df36d

master-c36e81d

master-c3ac702

master-c3ca7a5

master-c494ed5

master-c4f89d8

master-c4fe84f

master-c50b628

master-c56b715

master-c5aa5e5

master-c5d70f5

master-c63bb1d

master-c798308

master-c824d2e

master-c85e03d

master-c8c2c52

master-c9a59b7

master-c9c74b4

master-c9e2c26

master-ca74884

master-ca7c3f4

master-cb1c072

master-cb40dfc

master-cbebf61

master-cc0bb72

master-cc9cee8

master-cd7fa95

master-ce2c7d7

master-cea1c85

master-cf267d1

master-cf348a6

master-cf658ad

master-d01bccd

master-d0aaff5

master-d1f563a

master-d2a4366

master-d2c59b8

master-d3494bb

master-d3f202d

master-d40fded

master-d411968

master-d502bc7

master-d5512b7

master-d5850c5

master-d5b111f

master-d75561d

master-d783f79

master-d7d2e6a

master-d7def1a

master-d924522

master-d990e3f

master-d9a239c

master-da18898

master-da5303c

master-db10808

master-db4047a

master-dc271c5

master-dcb2ed4

master-dcdd65e

master-dd0eabc

master-dd7eff5

master-deb7dfc

master-dfd9fce

master-e0305ea

master-e129551

master-e216aa0

master-e2cd506

master-e32089b

master-e4412b4

master-e4422e2

master-e4caa8d

master-e4cf982

master-e59fcb2

master-e6a46b0

master-e6c9e09

master-e76d630

master-e7f6997

master-e7fe66e

master-e8035f1

master-e899bf5

master-e8c0516

master-e95b655

master-e986f94

master-e9b12c3

master-ea04a4c

master-ea10d3d

master-ea3a0ad

master-ea60007

master-eaa6ca5

master-eb17a02

master-eb542d3

master-ec2e10c

master-ec326d3

master-ec728e4

master-ec9cdb6

master-ecb217d

master-ecbe466

master-ed3c680

master-ed9a54e

master-ee0c40d

master-ee1b497

master-ee77efe

master-ee96541

master-eeaa7b0

master-ef3171d

master-ef3f333

master-efd0564

master-efe0507

master-f048af0

master-f0d70f1

master-f121705

master-f202ada

master-f257fd2

master-f266259

master-f2c754e

master-f2d1c47

master-f31b539

master-f3c3b4b

master-f3d4edf

master-f4cef87

master-f4d277a

master-f514d1b

master-f5a77a6

master-f5bfea0

master-f647ce0

master-f64d44a

master-f7d0509

master-f7d278f

master-f7dc43b

master-f954edd

master-f9a6364

master-fa84c4b

master-fab49c6

master-fb62f92

master-fbd4d38

master-fc8ef54

master-ff5d58f

master-ff966e7

master-ffb06a3

master-fff0e0e

gguf-v0.*

gguf-v0.10.0

gguf-v0.12.0

gguf-v0.13.0

gguf-v0.14.0

gguf-v0.16.0

gguf-v0.16.1

gguf-v0.16.2

gguf-v0.16.3

gguf-v0.17.0

gguf-v0.4.0

gguf-v0.9.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-49847.json"

vanir_signatures_modified

"2026-04-12T16:41:32Z"

vanir_signatures

[
    {
        "signature_version": "v1",
        "deprecated": false,
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "169678252353221686058327076705983110950",
                "111020387473770866180977401242009398056",
                "181055122984592006969397469993317110311",
                "316824732550221164803388954236044593333",
                "321477996013993916131729265106299645296",
                "149834009032174801870473138042267605522",
                "48736868453122173412669636816078777749",
                "25222289046965014859768863099826867804",
                "277823017251932695168500914324050378445",
                "275023068415373625420142878551355670904",
                "107181731931003307835415921280185529094",
                "306780858145501498281366326076963419249",
                "163037821633632488959166563335604107814",
                "334423476380994599270006155106083136215",
                "338020793754324996781781734297939932784"
            ]
        },
        "source": "https://github.com/ggml-org/llama.cpp/commit/fb85a288d72abbd5e5daa8de96e6f8bfa7b5ab46",
        "id": "CVE-2025-49847-ff8b2773",
        "signature_type": "Line",
        "target": {
            "file": "src/llama-vocab.cpp"
        }
    }
]