AST-2013-005: Remote crash from invalid SDP
If the SIP channel driver processes an invalid SDP that defines media
descriptions before connection information, it may attempt to
reference the socket address information even though that information
has not yet been set. This will cause a crash.
AST-2013-004: Fix crash when handling ACK on dialog that has no channel
A remotely exploitable crash vulnerability exists in the SIP channel
driver if an ACK with SDP is received after the channel has been
terminated. The handling code incorrectly assumed that the channel
would always be present.
2e860b2538