N/A

An issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. A memory leak occurs when an Asterisk pjsip session object is created and that call gets rejected before the session itself is fully established. When this happens the session object never gets destroyed. Eventually Asterisk can run out of memory and crash.

N/A

N/A

Digium Asterisk Open Source和Certified Asterisk 安全漏洞

Digium Asterisk Open Source和Certified Asterisk都是美国Digium公司的开源电话交换机（PBX）系统软件。该软件支持语音信箱、多方语音会议、交互式语音应答(IVR)等。 Digium Asterisk Open Source和Certified Asterisk中存在安全漏洞。攻击者可利用该漏洞造成拒绝服务（内存泄露、内存耗尽和崩溃）。以下产品和版本受到影响：Digium Asterisk Open Source 13.18.1之前的13版本，14.7.1之前

N/A

N/A