Y Ateya

**Name of the Vulnerable Software and Affected Versions** Asterisk Open Source versions 12.x through 12.8.0 Asterisk Open Source versions 13.x through 13.1.0 **Description** The issue allows remote authenticated users to cause a denial of service by consuming file descriptors. This occurs when the PJSIP channel driver is used and an SDP offer containing only incompatible codecs is sent. **Recommendations** For Asterisk Open Source versions 12.x through 12.8.0, update to version 12.8.1 or later. For Asterisk Open Source versions 13.x through 13.1.0, update to version 13.1.1 or later.