sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npytokennext function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.
"https://github.com/pypa/advisory-database/blob/main/vulns/sqlite-vec/PYSEC-2026-1938.yaml"