Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2014-005: Remote Crash in PJSIP Channel Driver’s Publish/Subscribe Framework

June 12, 2014

http://downloads.asterisk.org/pub/security/AST-2014-005.pdf

https://downloads.asterisk.org/pub/security/AST-2014-005.pdf

AST-2014-004: Remote Crash Vulnerability in PJSIP Channel Driver Subscription Handling

March 10, 2014

http://downloads.asterisk.org/pub/security/AST-2014-004.pdf

https://downloads.asterisk.org/pub/security/AST-2014-004.pdf

AST-2014-003: Remote Crash Vulnerability in PJSIP channel driver

March 10, 2014

http://downloads.asterisk.org/pub/security/AST-2014-003.pdf

https://downloads.asterisk.org/pub/security/AST-2014-003.pdf

AST-2014-002: Denial of Service Through File Descriptor Exhaustion with chan_sip Session-Timers

March 10, 2014

http://downloads.asterisk.org/pub/security/AST-2014-002.pdf

https://downloads.asterisk.org/pub/security/AST-2014-002.pdf

AST-2014-001: Stack Overflow in HTTP Processing of Cookie Headers

March 10, 2014

http://downloads.asterisk.org/pub/security/AST-2014-001.pdf

https://downloads.asterisk.org/pub/security/AST-2014-001.pdf