CVE-2006-3082

Impact:
Moderate
Public Date:
2006-05-31
Bugzilla:
1618133: CVE-2006-3082 security flaw

The MITRE CVE dictionary describes this issue as:

parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to an integer overflow, as demonstrated using the --no-armor option.

Find out more about CVE-2006-3082 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (gnupg) RHSA-2006:0571 2006-07-18
Red Hat Enterprise Linux 2.1 (gnupg) RHSA-2006:0571 2006-07-18
Red Hat Enterprise Linux 4 (gnupg) RHSA-2006:0571 2006-07-18
Last Modified

CVE description copyright © 2017, The MITRE Corporation