| 标题 | vllm-project vLLM 0.19.0 Use of Uninitialized Resource |
|---|
| 描述 | vLLM's block allocator returns GPU KV cache blocks to the free pool upon request completion or cancellation without zeroing their contents. When a subsequent request is allocated one of these dirty blocks, it decodes from stale activation data belonging to a previous request rather than from its own context. In a multi-tenant deployment, this means one user's conversationdata can influence, or appear verbatim in, another user's response.
The bug is confirmed reproducible on vLLM 0.19.0 with 10/10 run consistency across multiple independent traces. It does not require speculative decoding, prefix caching, or any special server configuration, only concurrent requests under normal load. Affected requests produce completely different output sequences across runs at temperature=0, where outputs should be fully deterministic. |
|---|
| 来源 | ⚠️ https://github.com/vllm-project/vllm/issues/39146 |
|---|
| 用户 | Zyz3366 (UID 97230) |
|---|
| 提交 | 2026-04-09 21時44分 (2 月前) |
|---|
| 管理 | 2026-04-26 21時38分 (17 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 359740 [vllm 直到 0.19.0 KV Block kv_cache_interface.py has_mamba_layers 远程代码执行] |
|---|
| 积分 | 20 |
|---|