.. _mozilla_projects_nss_nss_3_122_1_release_notes: NSS 3.122.1 release notes =============================== `Introduction <#introduction>`__ -------------------------------- .. container:: Network Security Services (NSS) 3.122.1 was released on *13 April 2026**. `Distribution Information <#distribution_information>`__ -------------------------------------------------------- .. container:: The HG tag is NSS_3_122_1_RTM. NSS 3.122.1 requires NSPR 4.38.2 or newer. NSS 3.122.1 source distributions are available on ftp.mozilla.org for secure HTTPS download: - Source tarballs: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_122_1_RTM/src/ Other releases are available :ref:`mozilla_projects_nss_releases`. .. _changes_in_nss_3.122.1: `Changes in NSS 3.122.1 <#changes_in_nss_3.122.1>`__ ------------------------------------------------------------------ .. container:: - Bug 2030135 - improve error handling in PK11_ImportPrivateKeyInfoAndReturnKey. r=#nss-reviewers - Bug 2029752 - Improving the allocation of S/MIME DecryptSymKey - Bug 2029462 - store email on subject cache_entry in NSS trust domain. r=#nss-reviewers - Bug 2029425 - Heap use-after-free in cert_VerifyCertChainOld via dangling certsList[] entry on NameConstraints violation. r=#nss-reviewers - Bug 2029323 - Improve size calculations in CMS content buffering r=#nss-reviewers - Bug 2028001 - avoid integer overflow while escaping RFC822 Names. r=#nss-reviewers - Bug 2027378 - Reject excessively large ASN.1 SEQUENCE OF in quickder r=#nss-reviewers - Bug 2027365 - Deep copy profile data in CERT_FindSMimeProfile r=#nss-reviewers - Bug 2027345 - Improve input validation in DSAU signature decoding r=#nss-reviewers - Bug 2026311 - avoid integer overflow in RSA_EMSAEncodePSS - Bug 2026156 - Add a maximum cert uncompressed len and tests - Bug 2026089 - Clarify extension negotiation mechanism for TLS Handshakes r=#nss-reviewers - Bug 1935995 - make ss->ssl3.hs.cookie an owned-copy of the cookie. r=djackson