YAML Metadata Warning: empty or missing yaml metadata in repo card (https://huggingface.co/docs/hub/model-cards#model-card-metadata)

PoC: Flatbuffer Storage Vector OOB Read in PyTorch Mobile (.ptl)

Vulnerability: flatbuffer_loader.cpp:696-700 — getStorage() bounds-checks against storages_.size() (sized from storage_data_size int field) but accesses storage_data() (the actual flatbuffer vector). A crafted .ptl file with storage_data_size > storage_data()->size() causes an OOB read on the storage vector.

Files

poc_flatbuf_storage_oob.py — Full PoC (creates crafted .ptl, triggers SIGSEGV)
malicious_storage_oob.ptl — Pre-built crafted model

Quick Start

pip install torch
python poc_flatbuf_storage_oob.py

Expected Output

Part 1: SIGSEGV crash from inflated storage_data_size + OOB storage_location_index
Part 2: Alternative vector length shrink attack
Part 3: Vulnerability details with code references

Downloads last month: -; Downloads are not tracked for this model. How to track

Inference Providers NEW

This model isn't deployed by any Inference Provider. 🙋 Ask for provider support