From f08448f802164cbb88ab5f0045d198752979a895 Mon Sep 17 00:00:00 2001
From: Gabriele Gristina <matrix@users.noreply.github.com>
Date: Sat, 15 Apr 2023 23:25:50 +0200
Subject: [PATCH 1/2] Fixed buffer overflow on module_26600.c /
 module_hash_encode()

---
 src/modules/module_26600.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/module_26600.c b/src/modules/module_26600.c
index 929c37a76..6f13dd2e5 100644
--- a/src/modules/module_26600.c
+++ b/src/modules/module_26600.c
@@ -291,7 +291,7 @@ int module_hash_encode (MAYBE_UNUSED const hashconfig_t *hashconfig, MAYBE_UNUSE
 
   if ((ct_len % 4) > 0) j++;
 
-  u32 tmp_buf[784] = { 0 };
+  u32 tmp_buf[788] = { 0 };
 
   for (u32 i = 0; i < j; i++) tmp_buf[i] = byte_swap_32 (metamask->ct_buf[i]);
 

From 4eac85cb8cfaaac70773c81514ad5c82b30a8806 Mon Sep 17 00:00:00 2001
From: Gabriele Gristina <matrix@users.noreply.github.com>
Date: Sat, 15 Apr 2023 23:28:29 +0200
Subject: [PATCH 2/2] update changes.txt

---
 docs/changes.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/changes.txt b/docs/changes.txt
index e838fab01..a15af4707 100644
--- a/docs/changes.txt
+++ b/docs/changes.txt
@@ -46,6 +46,7 @@
 - Fixed incorrect plaintext check for 25400 and 26610. Increased plaintext check to 32 bytes to prevent false positives.
 - Fixed bug in --stdout that caused certain rules to malfunction
 - Handle signed/unsigned PDF permission P value for all PDF hash-modes
+- Fixed buffer overflow on module_26600.c / module_hash_encode()
 
 ##
 ## Technical