Sotiris Ganouris

**Name of the Vulnerable Software and Affected Versions** Asterisk versions 15.7.1 and earlier Asterisk versions 16.1.1 and earlier **Description** The issue is related to an Integer Signedness problem in the `res pjsip sdp rtp` module, which can be exploited by remote authenticated users. This can be done by sending a specially crafted SDP protocol violation, leading to a crash of Asterisk. **Recommendations** For Asterisk versions 15.7.1 and earlier, update to a version later than 15.7.1 to resolve the issue. For Asterisk versions 16.1.1 and earlier, update to a version later than 16.1.1 to resolve the issue.