CVE-2006-3082

Name	CVE-2006-3082
Description	parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to an integer overflow, as demonstrated using the --no-armor option.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
References	DSA-1107, DSA-1115
Debian Bugs	375052, 375053, 375473

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
gnupg2 (PTS)	buster, buster (security)	2.2.12-1+deb10u2	fixed
	bullseye, bullseye (security)	2.2.27-2+deb11u2	fixed
	bookworm	2.2.40-1	fixed
	sid	2.2.40-1.1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
gnupg	source	sarge	1.4.1-1.sarge4		DSA-1115
gnupg	source	(unstable)	1.4.3-2	low		375052, 375473
gnupg2	source	sarge	1.9.15-6sarge1		DSA-1115
gnupg2	source	(unstable)	1.9.20-1.1	low		375053