Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Fedora 42: FEDORA-2025-b356588c06 moderate: llama-cpp remote code execution

fedora
Calendar Grey April 20, 2025
Dist Fedora Esm H88
Revise Fedora 42 to address possible RCE exploit in llama-cpp. Fortify your system with the most recent updates.
Fix bz2358011

Summary

The main goal of llama.cpp is to run the LLaMA model using 4-bit

integer quantization on a MacBook

* Plain C/C++ implementation without dependencies

* Apple silicon first-class citizen - optimized via ARM NEON, Accelerate

and Metal frameworks

* AVX, AVX2 and AVX512 support for x86 architectures

* Mixed F16 / F32 precision

* 2-bit, 3-bit, 4-bit, 5-bit, 6-bit and 8-bit integer quantization support

* CUDA, Metal and OpenCL GPU backend support

The original implementation of llama.cpp was hacked in an evening.

Since then, the project has improved significantly thanks to many

contributions. This project is mainly for educational purposes and

serves as the main playground for developing new features for the

ggml library.

Update Information:

Fix bz2358011

Change Log

* Thu Apr 10 2025 Tom Rix - b4094-11 - Fix bz2358011

References


[ 1 ] Bug #2358011 - Possible RCE in llama-cpp on Fedora 42 https://bugzilla.redhat.com/show_bug.cgi?id=2358011

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-b356588c06' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: llama-cpp
Product: Fedora 42
Version: b4094
Release: 11.fc42
Summary: Port of Facebook's LLaMA model in C/C++

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here