Security Advisories

Stay up to date with the latest security advisories for the
Asterisk Project.

AST-2019-002: Remote crash vulnerability with MESSAGE messages

July 11, 2019

http://downloads.digium.com/pub/security/AST-2019-002.html

https://downloads.digium.com/pub/security/AST-2019-002.html

AST-2019-001: Remote crash vulnerability with SDP protocol violation

February 28, 2019

http://downloads.asterisk.org/pub/security/AST-2019-001.html

https://downloads.asterisk.org/pub/security/AST-2019-001.html

AST-2018-010: Remote crash vulnerability DNS SRV and NAPTR lookups

November 14, 2018

http://downloads.asterisk.org/pub/security/AST-2018-010.html

https://downloads.asterisk.org/pub/security/AST-2018-010.html

AST-2018-009: Remote crash vulnerability in HTTP websocket upgrade

September 21, 2018

http://downloads.asterisk.org/pub/security/AST-2018-009.html

https://downloads.asterisk.org/pub/security/AST-2018-009.html

AST-2018-008: PJSIP endpoint presence disclosure when using ACL

June 11, 2018

http://downloads.asterisk.org/pub/security/AST-2018-008.html

https://downloads.asterisk.org/pub/security/AST-2018-008.html