CNNVD-202601-1881 Information

CNNVD ID

CNNVD-202601-1881

Related CVE

CVE-2025-15514

• CNNVD Published: 2026-01-12

Description (Chinese)

Ollama是Ollama开源的一个可以在本地启动并运行的大型语言模型。 Ollama 0.11.5-rc0版本至0.13.5版本存在安全漏洞，该漏洞源于多模态模型图像处理功能存在空指针取消引用，可能导致拒绝服务。

Description (English)

Ollama is a large-scale local language model that can be started and run locally. There is a security loophole in Ollama 0.11.5-rc0 to 0.13.5, which stems from the absence of an empty reference pointer for the MMA image processing function, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Ollama

Published

2026-01-12

Last Modified

2026-02-24

References

https://github.com/ollama/ollama https://huntr.com/bounties/172df98b-07cd-41ea-a628-366f8cd525c0 https://ollama.com/ https://www.vulncheck.com/advisories/ollama-multi-modal-image-processing-null-pointer-dereference

Patch

https://github.com/ollama/ollama/releases