NSS 3.34.1 release notes


The Network Security Services (NSS) team has released NSS 3.34.1, which is a minor release.

Distribution information

The hg tag is NSS_3_34.1_RTM. NSS 3.34.1 requires Netscape Portable Runtime (NSPR) 4.17, or newer.

NSS 3.34.1 source distributions are available on ftp.mozilla.org for secure HTTPS download:

Notable Changes in NSS 3.34.1

  • The following CA certificate was Re-Added. It was previously removed in NSS 3.34, but now re-added with only the Email trust bit set. (bug 1418678)

    • CN = Certum CA, O=Unizeto Sp. z o.o.

      • SHA-256 Fingerprint: D8:E0:FE:BC:1D:B2:E3:8D:00:94:0F:37:D2:7D:41:34:4D:99:3E:73:4B:99:D5:65:6D:97:78:D4:D8:14:36:24

  • Removed entries from certdata.txt for actively distrusted certificates that have expired (bug 1409872).

  • The version of the CA list was set to 2.20.


NSS 3.34.1 shared libraries are backward compatible with all older NSS 3.x shared libraries. A program linked with older NSS 3.x shared libraries will work with NSS 3.34 shared libraries, without recompiling, or relinking. Furthermore, applications that restrict their use of NSS APIs to the functions listed in NSS Public Functions will remain compatible with future versions of the NSS shared libraries.


Bugs discovered should be reported by filing a bug report with bugzilla.mozilla.org (select product ‘NSS’).