You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

Core ML MIL Blob Metadata Overflow Reproducer

This repository contains a minimal malformed Core ML MIL blob weight file for a Huntr security report.

The file is non-executable. It contains a valid storage header and a single blob metadata record whose sizeInBytes is intentionally oversized to exercise CoreMLTools bounds validation.

Files

malformed_mil_blob.wt: minimal malformed MIL blob file.
verify_coreml_storage_reader_overflow.cpp: local-only verifier that calls StorageReader::GetRawDataView() and prints whether the malformed metadata was accepted.

Expected Result

A safe parser should reject the malformed metadata with a range/validation error. The vulnerable behavior observed locally is:

accepted raw view size=18446744073709551495

SHA256(malformed_mil_blob.wt): fd537a3466beebaef1dc263c864b6f4a6e99325779973bdfd2e331c4ace16675

Downloads last month: -; Downloads are not tracked for this model. How to track

Inference Providers NEW

This model isn't deployed by any Inference Provider. 🙋 Ask for provider support