VDB
KO
MEDIUM 6.5

PYSEC-2026-1450

hnswlib Double Free vulnerability

Details

Hnswlib 0.7.0 has a double free in `init_index` when the M argument is a large integer.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / hnswlib
Introduced in: 0 Fixed in: 0.8.0
Fix pip install --upgrade 'hnswlib>=0.8.0'

References