diff --git a/gnupg.spec b/gnupg.spec
index cacd530..d9dc5df 100644
--- a/gnupg.spec
+++ b/gnupg.spec
@@ -1,7 +1,7 @@
 Summary: A GNU utility for secure communication and data storage.
 Name: gnupg
 Version: 1.4.3
-Release: 3
+Release: 5
 License: GPL
 Group: Applications/System
 Source0: ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-%{version}.tar.bz2
@@ -11,6 +11,7 @@ Source3: 5B0358A2.gpg
 Patch0: gnupg-1.4.1-gcc.patch
 Patch1: gnupg-1.4.2-curl.patch
 Patch2: gnupg-1.4.3-xloadimage.patch
+Patch3: gnupg-1.4.3-CVE-2006-3082.patch
 URL: http://www.gnupg.org/
 BuildPrereq: autoconf, automake, bzip2-devel, expect, ncurses-devel
 BuildPrereq: openldap-devel, readline-devel, zlib-devel
@@ -34,6 +35,7 @@ only IDEA for symmetric-key encryption, which is patented worldwide).
 %patch0 -p1 -b .gcc
 %patch1 -p0 -b .curl
 %patch2 -p1 -b .xloadimage
+%patch3 -p1 -b .CVE-2006-3082
 autoreconf
 
 %build
@@ -53,6 +55,15 @@ make %{?_smp_mflags}
 make check
 env LANG=C expect -f $RPM_SOURCE_DIR/gnupg-shm-coprocessing.expect
 
+set +e
+./g10/gpg --no-armor $RPM_SOURCE_DIR/CVE-2006-3082.gpg
+status=$?
+set -e
+if test $status -ge 126 ; then
+	echo "Uh-oh. Are we segfaulting here?"
+	exit 1
+fi
+
 %clean
 rm -rf $RPM_BUILD_ROOT
 
@@ -100,6 +111,12 @@ exit 0
 %{_mandir}/man7/*
 
 %changelog
+* Tue Jun 20 2006 Nalin Dahyabhai <nalin@redhat.com> - 1.4.3-5
+- rebuild
+
+* Tue Jun 20 2006 Nalin Dahyabhai <nalin@redhat.com> - 1.4.3-4
+- add patch from upstream to fix CVE-2006-3082 (#195946)
+
 * Tue Apr 11 2006 Nalin Dahyabhai <nalin@redhat.com> - 1.4.3-3
 - rebuild