A 16 bit SMS message that contains an odd message length value will cause the message decoding loop to run forever. The message buffer is not on the stack but will be overflowed resulting in corrupted memory and an immediate crash.
Find Asterisk Project Security Advisory here – http://downloads.asterisk.org/pub/security/AST-2013-006.html