| タイトル | thu-pacman chitu <0.1.0 Deserialization |
|---|
| 説明 | chitu is a high-performance inference framework for large language models (LLM). A vulnerability has been identified within its codebase regarding the use of the torch.load function. In the model loading process of Chitu, the torch.load function is repeatedly utilized to load checkpoint files without specifying the weights_only=True parameter. This oversight allows the function to deserialize the entire content of the checkpoint file, including any malicious Python objects and code that might be embedded.
More details: https://github.com/thu-pacman/chitu/issues/32 |
|---|
| ソース | ⚠️ https://github.com/thu-pacman/chitu/issues/32 |
|---|
| ユーザー | ybdesire (UID 83239) |
|---|
| 送信 | 2025年03月25日 10:47 (1 年 ago) |
|---|
| モデレーション | 2025年04月03日 09:17 (9 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 303111 [thu-pacman chitu 0.1.0 chitu/chitu/backend.py torch.load ckpt_path/quant_ckpt_dir 特権昇格] |
|---|
| ポイント | 20 |
|---|