Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2012-003: Stack Buffer Overflow in HTTP Manager

March 15, 2012

http://downloads.asterisk.org/pub/security/AST-2012-003.pdf

https://downloads.asterisk.org/pub/security/AST-2012-003.pdf

AST-2012-002: Remote Crash Vulnerability in Milliwatt Application

March 15, 2012

http://downloads.asterisk.org/pub/security/AST-2012-002.pdf

https://downloads.asterisk.org/pub/security/AST-2012-002.pdf

AST-2012-001: SRTP Video Remote Crash Vulnerability

January 19, 2012

http://downloads.asterisk.org/pub/security/AST-2012-001.pdf

https://downloads.asterisk.org/pub/security/AST-2012-001.pdf

AST-2011-012: Remote Crash Vulnerability in SIP channel driver

October 17, 2011

http://downloads.asterisk.org/pub/security/AST-2011-012.pdf

https://downloads.asterisk.org/pub/security/AST-2011-012.pdf

AST-2011-011: Possible enumeration of SIP users due to differing authentication responses

June 28, 2011

http://downloads.asterisk.org/pub/security/AST-2011-011.pdf

https://downloads.asterisk.org/pub/security/AST-2011-011.pdf