AIKIDO-2026-664390
faiss-cpu is vulnerable to Denial of Service (DoS)
41
Medium Risk
This Affects:
faiss-cpuTL;DR
The faiss index deserialization path in index_read.cpp accepts malformed serialized index payloads that can crash the process, dereference null inner indexes, or spend excessive CPU during load. Before the fix, non-canonical bool encodings were read with READ1 into bool storage, null inner indexes in IndexIDMap and IndexBinaryFromFloat wrappers were accepted, and large IndexLattice r2 values could trigger decode-cache build exhaustion. The release adds READ1_BOOL validation, rejects null inner indexes at deserialization, caps configurable IndexLattice r2, and initializes Top1BlockResultHandler ids_tab entries to avoid uninitialized reads on empty search paths.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range and your application loads serialized Faiss indexes from untrusted or attacker-influenced sources.
Background info
faiss-cpu is vulnerable to Denial of Service (DoS) in versions 1.0.0 - 1.14.2.
How to fix this
Upgrade the faiss-cpu library to the patch version.
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant