nss_3_111.rst (1579B)
1 .. _mozilla_projects_nss_nss_3_111_release_notes: 2 3 NSS 3.111 release notes 4 ======================== 5 6 `Introduction <#introduction>`__ 7 -------------------------------- 8 9 .. container:: 10 11 Network Security Services (NSS) 3.111 was released on *28 April 2025**. 12 13 `Distribution Information <#distribution_information>`__ 14 -------------------------------------------------------- 15 16 .. container:: 17 18 The HG tag is NSS_3_111_RTM. NSS 3.111 requires NSPR 4.36 or newer. The latest version of NSPR is 4.36. 19 20 NSS 3.111 source distributions are available on ftp.mozilla.org for secure HTTPS download: 21 22 - Source tarballs: 23 https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_111_RTM/src/ 24 25 Other releases are available :ref:`mozilla_projects_nss_releases`. 26 27 .. _changes_in_nss_3.111: 28 29 `Changes in NSS 3.111 <#changes_in_nss_3.111>`__ 30 ------------------------------------------------------------------ 31 32 .. container:: 33 34 - Bug 1930806 - FIPS changes need to be upstreamed: force ems policy. 35 - Bug 1957685 - Turn off Websites Trust Bit from CAs. 36 - Bug 1937338 - Update nssckbi version following April 2025 Batch of Changes. 37 - Bug 1943135 - Disable SMIME 'trust bit' for GoDaddy CAs. 38 - Bug 1874383 - Replaced deprecated sprintf function with snprintf in dbtool.c. 39 - Bug 1954612 - Need up update NSS for PKCS 3.1. 40 - Bug 1773374 - avoid leaking localCert if it is already set in ssl3_FillInCachedSID. 41 - Bug 1953097 - Decrease ASAN quarantine size for Cryptofuzz in CI. 42 - Bug 1943962 - selfserv: Add support for zlib certificate compression.