NSS 3.86 Release
46 views
Skip to first unread message
John Schanck
Dec 8, 2022, 5:30:28 PM12/8/22
to dev-tec...@mozilla.org
Dear all,
Network Security Services (NSS) 3.86 was released on 8 December 2022.
The HG tag is NSS_3_86_RTM. This version of NSS requires NSPR 4.35 or newer.
NSS 3.86 source distributions are available on ftp.mozilla.org for
secure HTTPS download:
<https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_86_RTM/src/>
Changes:
- Bug 1803190 - conscious language removal in NSS.
- Bug 1794506 - Set nssckbi version number to 2.60.
- Bug 1803453 - Set CKA_NSS_SERVER_DISTRUST_AFTER and
CKA_NSS_EMAIL_DISTRUST_AFTER for 3 TrustCor Root Certificates.
- Bug 1799038 - Remove Staat der Nederlanden EV Root CA from NSS.
- Bug 1797559 - Remove EC-ACC root cert from NSS.
- Bug 1794507 - Remove SwissSign Platinum CA - G2 from NSS.
- Bug 1794495 - Remove Network Solutions Certificate Authority.
- Bug 1802331 - compress docker image artifact with zstd.
- Bug 1799315 - Migrate nss from AWS to GCP.
- Bug 1800989 - Enable static builds in the CI.
- Bug 1765759 - Removing SAW docker from the NSS build system.
- Bug 1783231 - Initialising variables in the rsa blinding code.
- Bug 320582 - Implementation of the double-signing of the message for ECDSA.
- Bug 1783231 - Adding exponent blinding for RSA.
NSS 3.86 shared libraries are backwards-compatible with all older NSS
3.x shared libraries. A program linked with older NSS 3.x shared
libraries will work with this new version of the shared libraries
without recompiling or relinking. Furthermore, applications that
restrict their use of NSS APIs to the functions listed in NSS Public
Functions will remain compatible with future versions of the NSS
shared libraries.
Bugs discovered should be reported by filing a bug report at
<https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>
Release notes will be available at
<https://firefox-source-docs.mozilla.org/security/nss/releases/index.html>
though you should expect a small delay.
Best,
John
Network Security Services (NSS) 3.86 was released on 8 December 2022.
The HG tag is NSS_3_86_RTM. This version of NSS requires NSPR 4.35 or newer.
NSS 3.86 source distributions are available on ftp.mozilla.org for
secure HTTPS download:
<https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_86_RTM/src/>
Changes:
- Bug 1803190 - conscious language removal in NSS.
- Bug 1794506 - Set nssckbi version number to 2.60.
- Bug 1803453 - Set CKA_NSS_SERVER_DISTRUST_AFTER and
CKA_NSS_EMAIL_DISTRUST_AFTER for 3 TrustCor Root Certificates.
- Bug 1799038 - Remove Staat der Nederlanden EV Root CA from NSS.
- Bug 1797559 - Remove EC-ACC root cert from NSS.
- Bug 1794507 - Remove SwissSign Platinum CA - G2 from NSS.
- Bug 1794495 - Remove Network Solutions Certificate Authority.
- Bug 1802331 - compress docker image artifact with zstd.
- Bug 1799315 - Migrate nss from AWS to GCP.
- Bug 1800989 - Enable static builds in the CI.
- Bug 1765759 - Removing SAW docker from the NSS build system.
- Bug 1783231 - Initialising variables in the rsa blinding code.
- Bug 320582 - Implementation of the double-signing of the message for ECDSA.
- Bug 1783231 - Adding exponent blinding for RSA.
NSS 3.86 shared libraries are backwards-compatible with all older NSS
3.x shared libraries. A program linked with older NSS 3.x shared
libraries will work with this new version of the shared libraries
without recompiling or relinking. Furthermore, applications that
restrict their use of NSS APIs to the functions listed in NSS Public
Functions will remain compatible with future versions of the NSS
shared libraries.
Bugs discovered should be reported by filing a bug report at
<https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>
Release notes will be available at
<https://firefox-source-docs.mozilla.org/security/nss/releases/index.html>
though you should expect a small delay.
Best,
John
Reply all
Reply to author
Forward
0 new messages