SECURITY: rework BDAT receive function handling

(cherry picked from commit dd1b9b753bb7c42df2b8f48d726b82928b67940b) (cherry picked from commit 96fb195ebc2eb6790e6ad6dde46d478aee62198d)
author: Phil Pennock <phil+git@pennock-tech.com> 2020-10-29 23:21:36 -0400
committer: Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de> 2021-05-27 21:30:31 +0200
commit: 36771878fa93a04ecf5bdd71ad3c3c380a16aa03 (patch)
tree: d50de5bc1f2a8735cccc69fe334cbfe38ace3232 /doc/doc-txt/ChangeLog
parent: 518f0a0dd6df6f0d0ea51bfa126982d134e7a7ff (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 9837d6c0f..0e008c985 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -288,6 +288,12 @@ PP/09 Fix security issue with too many recipients on a message (to remove a
 PP/10 Fix security issue in SMTP verb option parsing
       Fixes CVE-2020-EXOPT reported by Qualys.
 
+PP/11 Fix security issue in BDAT state confusion.
+      Ensure we reset known-good where we know we need to not be reading BDAT
+      data, as a general case fix, and move the places where we switch to BDAT
+      mode until after various protocol state checks.
+      Fixes CVE-2020-BDATA reported by Qualys.
+
 
 Exim version 4.94
 -----------------
author	Phil Pennock <phil+git@pennock-tech.com>	2020-10-29 23:21:36 -0400
committer	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>	2021-05-27 21:30:31 +0200
commit	36771878fa93a04ecf5bdd71ad3c3c380a16aa03 (patch)
tree	d50de5bc1f2a8735cccc69fe334cbfe38ace3232 /doc/doc-txt/ChangeLog
parent	518f0a0dd6df6f0d0ea51bfa126982d134e7a7ff (diff)