SECURITY: refuse too small store allocations

Negative sizes are definitely bad. Optimistically, I'm saying that zero is bad too. But perhaps we have something doing that, expecting to be able to grow. In which case we'll have to amend this. (cherry picked from commit 1c9afcec0043e2fb72607b2addb0613763705549) (cherry picked from commit 6f5d7e5af8eff688c36f81334e4f063689561963)
author: Phil Pennock <phil+git@pennock-tech.com> 2020-10-29 20:49:49 -0400
committer: Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de> 2021-05-27 21:30:27 +0200
commit: 15282ddb92382fb203e61d7a66f37aa2fbdebb82 (patch)
tree: 78503c0bb0a75ea9df6dce7fdfcf72e538aebe49 /doc
parent: bafc62583bc4ded96e3a66d2fb98c9d7afaa8768 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 95b95e794..5a9c8f214 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -273,8 +273,10 @@ PP/05 Fix security issue CVE-2020-PFPSN and guard against cmdline invoker
       providing a particularly obnoxious sender full name.
       Reported by Qualys.
 
-pp/06 Fix CVE-2020-28016 (PFPZA): Heap out-of-bounds write in parse_fix_phrase()
+PP/06 Fix CVE-2020-28016 (PFPZA): Heap out-of-bounds write in parse_fix_phrase()
 
+PP/07 Refuse to allocate too little memory, block negative/zero allocations.
+      Security guard.
 
 
 Exim version 4.94
author	Phil Pennock <phil+git@pennock-tech.com>	2020-10-29 20:49:49 -0400
committer	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>	2021-05-27 21:30:27 +0200
commit	15282ddb92382fb203e61d7a66f37aa2fbdebb82 (patch)
tree	78503c0bb0a75ea9df6dce7fdfcf72e538aebe49 /doc
parent	bafc62583bc4ded96e3a66d2fb98c9d7afaa8768 (diff)