vulnerability
FreeBSD: VID-BE261737-C535-11E7-8DA5-001999F8D30B: asterisk -- Memory/File Descriptor/RTP leak in pjsip session resource
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:N/A:C) | Oct 15, 2017 | Nov 9, 2017 | Feb 19, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:C)
Published
Oct 15, 2017
Added
Nov 9, 2017
Modified
Feb 19, 2025
Description
The Asterisk project reports:
A memory leak occurs when an Asterisk pjsip session
object is created and that call gets rejected before the
session itself is fully established. When this happens
the session object never gets destroyed. This then leads
to file descriptors and RTP ports being leaked as well.
Solution
freebsd-upgrade-package-asterisk13
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.