Network Security Services (NSS) 3.112 was released on 27th May 2025. The HG tag is NSS_3_112_RTM. This version of NSS requires NSPR 4.35 or newer. The latest version of NSPR is 4.36.
NSS 3.112 source distributions are available on ftp.mozilla.org for secure HTTPS download: <https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_112_RTM/src/> Changes: - Bug 1963792 <https://bugzilla.mozilla.org/show_bug.cgi?id=1963792> - Fix alias for mac workers on try. - Bug 1966786 <https://bugzilla.mozilla.org/show_bug.cgi?id=1966786> - ensure all options can be configured with SSL_OptionSet and SSL_OptionSetDefault. - Bug 1931930 <https://bugzilla.mozilla.org/show_bug.cgi?id=1931930> - ABI/API break in ssl certificate processing - Bug 1955971 <https://bugzilla.mozilla.org/show_bug.cgi?id=1955971> - remove unnecessary assertion in sec_asn1d_init_state_based_on_template. - Bug 1965754 <https://bugzilla.mozilla.org/show_bug.cgi?id=1965754> - update taskgraph to v14.2.1. - Bug 1964358 <https://bugzilla.mozilla.org/show_bug.cgi?id=1964358> - Workflow for automation of the release on GitHub when pushing a tag - Bug 1952860 <https://bugzilla.mozilla.org/show_bug.cgi?id=1952860> - fix faulty assertions in SEC_ASN1DecoderUpdate - Bug 1934877 <https://bugzilla.mozilla.org/show_bug.cgi?id=1934877> - Renegotiations should use a fresh ECH GREASE buffer. - Bug 1951396 <https://bugzilla.mozilla.org/show_bug.cgi?id=1951396> - update taskgraph to v14.1.1 - Bug 1962503 <https://bugzilla.mozilla.org/show_bug.cgi?id=1962503> - Partial fix for ACVP build CI job - Bug 1961827 <https://bugzilla.mozilla.org/show_bug.cgi?id=1961827> - Initialize find in sftk_searchDatabase. - Bug 1963121 <https://bugzilla.mozilla.org/show_bug.cgi?id=1963121> - Add clang-18 to extra builds. - Bug 1963044 <https://bugzilla.mozilla.org/show_bug.cgi?id=1963044> - Fault tolerant git fetch for fuzzing. - Bug 1962556 <https://bugzilla.mozilla.org/show_bug.cgi?id=1962556> - Tolerate intermittent failures in ssl_policy_pkix_ocsp. - Bug 1962770 <https://bugzilla.mozilla.org/show_bug.cgi?id=1962770> - fix compiler warnings when DEBUG_ASN1D_STATES or CMSDEBUG are set. - Bug 1961835 <https://bugzilla.mozilla.org/show_bug.cgi?id=1961835> - fix content type tag check in NSS_CMSMessage_ContainsCertsOrCrls. - Bug 1963102 <https://bugzilla.mozilla.org/show_bug.cgi?id=1963102> - Remove Cryptofuzz CI version check NSS 3.112 shared libraries are backwards-compatible with all older NSS 3.x shared libraries. A program linked with older NSS 3.x shared libraries will work with this new version of the shared libraries without recompiling or relinking. Furthermore, applications that restrict their use of NSS APIs to the functions listed in NSS Public Functions will remain compatible with future versions of the NSS shared libraries. Bugs discovered should be reported by filing a bug report at <https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS> Release notes are available, after a short delay, at <https://firefox-source-docs.mozilla.org/security/nss/releases/index.html>. -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/mozilla.org/d/msgid/dev-tech-crypto/CAON8YFMYHQy-UK4ZhvJ8b8tcWYTA71b_eeiB%2BpQ4byxx3fhLNg%40mail.gmail.com.
