References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Known Affected Software Configurations Switch to CPE 2.2

Change History

CWE-203

OR
          *cpe:2.3:a:vllm:vllm:*:*:*:*:*:*:*:* versions up to (excluding) 0.9.0

GitHub, Inc.: https://github.com/vllm-project/vllm/commit/77073c77bc2006eb80ea6d5128f076f5e6c6f54f Types: Patch

GitHub, Inc.: https://github.com/vllm-project/vllm/pull/17045 Types: Issue Tracking, Vendor Advisory

GitHub, Inc.: https://github.com/vllm-project/vllm/security/advisories/GHSA-4qjh-9fv9-r85r Types: Vendor Advisory

vLLM is an inference and serving engine for large language models (LLMs). Prior to version 0.9.0, when a new prompt is processed, if the PageAttention mechanism finds a matching prefix chunk, the prefill process speeds up, which is reflected in the TTFT (Time to First Token). These timing differences caused by matching chunks are significant enough to be recognized and exploited. This issue has been patched in version 0.9.0.

AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N

CWE-208

https://github.com/vllm-project/vllm/commit/77073c77bc2006eb80ea6d5128f076f5e6c6f54f

https://github.com/vllm-project/vllm/pull/17045

https://github.com/vllm-project/vllm/security/advisories/GHSA-4qjh-9fv9-r85r