GGML GGUF File Format Vulnerabilities (2024)

Databricks AI Security team found and fixed several high severity vulnerabilities in the GGUF library which could have been used by attackers in supply chain attacks against ML team members.