A critical memory leak vulnerability named “Bleeding Llama” affects Ollama, a popular platform for running local AI models, exposing approximately 300,000 internet-facing servers globally. This flaw allows unauthenticated attackers to extract sensitive data directly from server memory by exploiting a weakness in processing uploaded model files, potentially leaking prompts, environment variables, and confidential information; users are urged to update to version 0.17.1 and secure exposed deployments immediately.
https://cybersecuritynews.com/ollama-vulnerability-exposes-servers/
