NSS 3.9.2 Release Notes
IntroductionNetwork Security Services (NSS) 3.9.2 is a patch release for NSS 3.11. The bug fixes in NSS 3.9.2 are described in the "Bugs Fixed" section below.
Distribution InformationThe CVS tag for the NSS 3.9.2 release is NSS_3_9_2_RTM. NSS 3.9.2 requires NSPR 4.5.
See the Documentation section for the build instructions.
NSS 3.9.2 source and binary distributions are also available on ftp.mozilla.org for secure HTTPS download:
- Source tarballs: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_9_2_RTM/src/.
- Binary distributions: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_9_2_RTM/. Both debug and optimized builds are provided. Go to the subdirectory for your platform, DBG (debug) or OPT (optimized), to get the tar.gz or zip file. The tar.gz or zip file expands to an nss-3.9.2 directory containing three subdirectories:
- include - NSS header files
- lib - NSS shared libraries
- bin - NSS Tools and test programs
Bugs FixedThe following bugs have been fixed in NSS 3.9.2.
- Bug 202979: CERT_ImportCerts always returns SECSuccess
- Bug 234058: Certificate name matching for non-FQDNs is insecure
- Bug 237934: nss_InitLock not atomic
- Bug 240784: FIPS mode does not work on OS/2
- Bug 242984: workaround for incomplete NSPR I/O layer in lib/ssl
- Bug 244095: several libraries need to be linked with -R $ORIGIN
- Bug 244907: NSS needs to handle unprotected keys in tokens.
- Bug 244914: NSS needs to provide applications access to application private objects.
- Bug 244915: freebl doesn't build correctly on Solaris 10 Sparc
- Bug 245518: NSS tools should have an rpath of /usr/lib/mps/secv1
- Bug 245915: NSS should have a API to tell if NSS has been initialized or not
- Bug 247406: secport.h has PORT_Strdup in C++ unsafe section