Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2017-05-19 asterisk -- Buffer Overrun in PJSIP transaction layer
asterisk -- Memory exhaustion on short SCCP packets
2017-04-04 asterisk -- Buffer overflow in CDR's set user
2016-12-09 asterisk -- Authentication Bypass
asterisk -- Crash on SDP offer or answer from endpoint using Opus
2016-09-08 asterisk -- Crash on ACK from unknown endpoint
asterisk -- RTP Resource Exhaustion
2016-04-15 asterisk -- Long Contact URIs in REGISTER requests can crash Asterisk
2016-02-04 asterisk -- Multiple vulnerabilities
2015-04-08 asterisk -- TLS Certificate Common name NULL byte exploit
2015-01-29 asterisk -- File descriptor leak when incompatible codecs are offered
asterisk -- Mitigation for libcURL HTTP request injection vulnerability