§ local-llm · storyline

vLLM v0.10.1.1

vLLM releases v0.10.1.1, a critical bugfix and security patch addressing HTTP header limits and removal of eval() for unknown type conversion.

Aug 20 · 23:20:50 · primary fetch1 sourceupdated Aug 20 · 23:20:50

This is a critical bugfix and security release: Fix CUTLASS MLA Full CUDAGraph (#23200) Limit HTTP header count and size (#23267): https://github.com/vllm-project/vllm/security/advisories/GHSA-rxc4-3w6r-4v47 Do not use eval() to convert unknown types (#23266): https://github.com/vllm-project/vllm/security/advisories/GHSA-79j6-g2m3-jgfw Full Changelog: https://github.com/vllm-project/vllm/compare/v0.10.1...v0.10.1.1

read full article on github.com ↗

§ sources1 publication · timeline below

github.comvllm v0.10.1.1primary23:20:50