FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gnupg -- user id integer overflow vulnerability

Affected packages
gnupg < 1.4.4

Details

VuXML ID f900bda8-0472-11db-bbf7-000c6ec775d9
Discovery 2006-05-31
Entry 2006-06-25

If GnuPG processes a userid with a very long packet length, GnuPG can crash due to insufficient bounds check. This can result in a denial-of-service condition or potentially execution of arbitrary code with the privileges of the user running GnuPG.

References

Bugtraq ID 18554
CVE Name CVE-2006-3082
Message 20060531115548.A2E4923E4B6@dzeta.agava.net
Message 87psgxic5e.fsf@wheatstone.g10code.de
URL http://cvs.gnupg.org/cgi-bin/viewcvs.cgi/trunk/g10/parse-packet.c?rev=4157&r1=4141&r2=4157