Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2014-010: Remote Crash when Handling Out of Call Message in Certain Dialplan Configurations

September 18, 2014

http://downloads.asterisk.org/pub/security/AST-2014-010.pdf

https://downloads.asterisk.org/pub/security/AST-2014-010.pdf

AST-2014-009: Remote Crash Based on Malformed SIP Subscription Requests in PJSIP Channel Driver

September 18, 2014

http://downloads.asterisk.org/pub/security/AST-2014-009.pdf

https://downloads.asterisk.org/pub/security/AST-2014-009.pdf

AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions

June 12, 2014

http://downloads.asterisk.org/pub/security/AST-2014-008.pdf

https://downloads.asterisk.org/pub/security/AST-2014-008.pdf

AST-2014-007: Exhaustion of Allowed Concurrent HTTP Connections

June 12, 2014

http://downloads.asterisk.org/pub/security/AST-2014-007.pdf

https://downloads.asterisk.org/pub/security/AST-2014-007.pdf

AST-2014-006: Asterisk Manager User Unauthorized Shell Access

June 12, 2014

http://downloads.asterisk.org/pub/security/AST-2014-006.pdf

https://downloads.asterisk.org/pub/security/AST-2014-006.pdf