Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2022-004: pjproject – possible integer underflow on STUN

March 4, 2022

https://downloads.digium.com/pub/security/AST-2022-004.html

AST-2021-009: pjproject/pjsip: crash when SSL socket destroyed during handshake

July 22, 2021

https://downloads.asterisk.org/pub/security/AST-2021-009.html

https://issues.asterisk.org/jira/browse/ASTERISK-29415

AST-2021-008: Remote crash when using IAX2 channel driver

July 22, 2021

https://downloads.asterisk.org/pub/security/AST-2021-008.html

https://issues.asterisk.org/jira/browse/ASTERISK-29392

AST-2021-007: Remote Crash Vulnerability in PJSIP channel driver

July 22, 2021

https://downloads.asterisk.org/pub/security/AST-2021-007.html

https://issues.asterisk.org/jira/browse/ASTERISK-29381

AST-2021-006: Crash when negotiating T.38 with a zero port

March 4, 2021

https://downloads.asterisk.org/pub/security/AST-2021-006.html

https://issues.asterisk.org/jira/browse/ASTERISK-29305