tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

nss_3_114.rst (2661B)

      1 .. _mozilla_projects_nss_nss_3_114_release_notes:
      2 
      3 NSS 3.114 release notes
      4 ========================
      5 
      6 `Introduction <#introduction>`__
      7 --------------------------------
      8 
      9 .. container::
     10 
     11   Network Security Services (NSS) 3.114 was released on *17 July 2025**.
     12 
     13 `Distribution Information <#distribution_information>`__
     14 --------------------------------------------------------
     15 
     16 .. container::
     17 
     18   The HG tag is NSS_3_114_RTM. NSS 3.114 requires NSPR 4.36 or newer. The latest version of NSPR is 4.37.
     19 
     20   NSS 3.114 source distributions are available on ftp.mozilla.org for secure HTTPS download:
     21 
     22   -  Source tarballs:
     23      https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_114_RTM/src/
     24 
     25   Other releases are available :ref:`mozilla_projects_nss_releases`.
     26 
     27 .. _changes_in_nss_3.114:
     28 
     29 `Changes in NSS 3.114 <#changes_in_nss_3.114>`__
     30 ------------------------------------------------------------------
     31 
     32 .. container::
     33 
     34   - Bug 1977376 - NSS 3.114 source distribution should include NSPR 4.37.
     35   - Bug 1970079 - Prevent leaks during pkcs12 decoding.
     36   - Bug 1953731 - Remove redundant assert in p7local.c.
     37   - Bug 1974515 - Bump nssckbi version to 2.80.
     38   - Bug 1961848 - Remove expired Baltimore CyberTrust Root.
     39   - Bug 1972391 - Add TrustAsia Dedicated Roots to NSS.
     40   - Bug 1974511 - Add SwissSign 2022 Roots to NSS.
     41   - Bug 1836559 - Add backwards compatibility for CK_PKCS5_PBKD2_PARAMS.
     42   - Bug 1965328 - Implement PKCS #11 v3.2 trust objects in softoken.
     43   - Bug 1965328 - Implement PKCS #11 v3.2 trust objects - nss proper.
     44   - Bug 1974331 - remove dead code in ssl3con.c.
     45   - Bug 1934867 - DTLS (excl DTLS1.3) Changing Holddown timer logic.
     46   - Bug 1974299 - Bump nssckbi version to 2.79.
     47   - Bug 1967826 - remove unneccessary assertion.
     48   - Bug 1948485 - Update mechanisms for Softoken PCT.
     49   - Bug 1974299 - convert Chunghwa Telecom ePKI Root removal to a distrust after.
     50   - Bug 1973925 - Ensure ssl_HaveRecvBufLock and friends respect opt.noLocks.
     51   - Bug 1973930 - use -O2 for asan build.
     52   - Bug 1973187 - Fix leaking locks when toggling SSL_NO_LOCKS.
     53   - Bug 1973105 - remove out-of-function semicolon.
     54   - Bug 1963009 - Extend pkcs8 fuzz target.
     55   - Bug 1963008 - Extend pkcs7 fuzz target.
     56   - Bug 1908763 - Remove unused assignment to pageno.
     57   - Bug 1908762 - Remove unused assignment to nextChunk.
     58   - Bug 1973490 - don't run commands as part of shell `local` declarations.
     59   - Bug 1973490 - fix sanitizer setup.
     60   - Bug 1973187 - don't silence ssl_gtests output when running with code coverage.
     61   - Bug 1967411 - Release docs and housekeeping.
     62   - Bug 1972768 - migrate to new linux tester pool