PT-2021-11857 · Sangoma +1 · Asterisk +1

Name of the Vulnerable Software and Affected Versions: Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 Description: A buffer overflow in the res pjsip diversion.c file allows a remote attacker to crash Asterisk by deliberately misusing SIP 181 responses. Recommendations: For versio...

UBUNTU-CVE-2020-35652

An issue was discovered in respjsipdiversion.c in Sangoma Asterisk before 13.38.0, 14.x through 16.x before 16.15.0, 17.x before 17.9.0, and 18.x before 18.1.0. A crash can occur when a SIP message is received with a History-Info header that contains a tel-uri, or when a SIP 181 response is...