CVE-2024-45436

Name of the Vulnerable Software and Affected Versions Ollama versions prior to 0.1.47

Description The issue is related to the extractFromZipFile() function in model.go of the Ollama system, which is used for launching and managing large language models (LLM). This function has an incorrect restriction on the directory path name with limited access. Exploitation of this issue may allow a remote attacker to impact the confidentiality and integrity of protected information. The extractFromZipFile function can extract members of a ZIP archive outside of the parent directory.

Recommendations For versions prior to 0.1.47, update to version 0.1.47 or later to resolve the issue. As a temporary workaround, consider restricting access to the extractFromZipFile function in model.go until a patch is available. Avoid using the extractFromZipFile function to extract members of a ZIP archive outside of the parent directory until the issue is resolved.