PT-2026-6804 · Ggml Org · Llama.Cpp

Tygls

·

Published

2026-02-06

·

Updated

2026-02-06

·

CVE-2026-2069

CVSS v3.1

3.3

Low

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions ggml-org llama.cpp versions prior to 55abc39
Description A flaw exists in the GBNF Grammar Handler component of ggml-org llama.cpp. Specifically, the llama grammar advance stack function within the llama.cpp/src/llama-grammar.cpp file is susceptible to a stack-based buffer overflow. This manipulation requires local access to launch the attack. An exploit for this issue has been published.
Recommendations Apply patch 18993.

Exploit

Fix

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-119

Related Identifiers

CVE-2026-2069

Affected Products

Llama.Cpp