Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2019-001: Remote crash vulnerability with SDP protocol violation

February 28, 2019

http://downloads.asterisk.org/pub/security/AST-2019-001.html

https://downloads.asterisk.org/pub/security/AST-2019-001.html

AST-2018-010: Remote crash vulnerability DNS SRV and NAPTR lookups

November 14, 2018

http://downloads.asterisk.org/pub/security/AST-2018-010.html

https://downloads.asterisk.org/pub/security/AST-2018-010.html

AST-2018-009: Remote crash vulnerability in HTTP websocket upgrade

September 21, 2018

http://downloads.asterisk.org/pub/security/AST-2018-009.html

https://downloads.asterisk.org/pub/security/AST-2018-009.html

AST-2018-008: PJSIP endpoint presence disclosure when using ACL

June 11, 2018

http://downloads.asterisk.org/pub/security/AST-2018-008.html

https://downloads.asterisk.org/pub/security/AST-2018-008.html

AST-2018-007: Infinite loop when reading iostreams

June 11, 2018

http://downloads.asterisk.org/pub/security/AST-2018-007.html

https://downloads.asterisk.org/pub/security/AST-2018-007.html