From 8d79ff3d6de6bdc33251187bc3d1118ca8cf3fdb Mon Sep 17 00:00:00 2001 From: Aidan Garske Date: Tue, 7 Apr 2026 13:10:12 -0700 Subject: [PATCH] F-2208 - Add ForceZero of RSA private exponent before free in Xilinx path --- wolfcrypt/src/rsa.c | 2 ++ wolfssl/version.h | 4 ++-- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/wolfcrypt/src/rsa.c b/wolfcrypt/src/rsa.c index 4fb4393f0b..3ebcd0d43c 100644 --- a/wolfcrypt/src/rsa.c +++ b/wolfcrypt/src/rsa.c @@ -2212,6 +2212,8 @@ static int wc_RsaFunctionSync(const byte* in, word32 inLen, byte* out, #endif } + if (d != NULL) + ForceZero(d, dSz); XFREE(d, key->heap, DYNAMIC_TYPE_PRIVATE_KEY); } #endif diff --git a/wolfssl/version.h b/wolfssl/version.h index a93c997f46..903bc3f4fb 100644 --- a/wolfssl/version.h +++ b/wolfssl/version.h @@ -28,8 +28,8 @@ extern "C" { #endif -#define LIBWOLFSSL_VERSION_STRING "5.8.4" -#define LIBWOLFSSL_VERSION_HEX 0x05008004 +#define LIBWOLFSSL_VERSION_STRING "5.9.0" +#define LIBWOLFSSL_VERSION_HEX 0x05009000 #ifdef __cplusplus }