### Beta/Release Uplift Approval Request * **User impact if declined**: This patch fixes a sec-high memory safety bug in NSS which impacts Firefox users via addon signatures and also a threading issue causing numerous crashes. * **Is this code covered by automated tests?**: Yes * **Has the fix been verified in Nightly?**: No * **Needs manual test from QE?**: No * **If yes, steps to reproduce**: * **List of other uplifts needed**: None * **Risk to taking this patch**: Low * **Why is the change risky/not risky? (and alternatives if risky)**: The sec-high fixes are in a codepath which is not used during normal addon verification and is only triggered when given malicious inputs. The threading fix is considered high-confidence. * **String changes made/needed**: * **Is Android affected?**: Yes
Bug 1770337 Comment 2 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
Note: See approvals / requests in parent bugs. ### Beta/Release Uplift Approval Request * **User impact if declined**: This patch fixes a sec-high memory safety bug in NSS which impacts Firefox users via addon signatures and also a threading issue causing numerous crashes. * **Is this code covered by automated tests?**: Yes * **Has the fix been verified in Nightly?**: No * **Needs manual test from QE?**: No * **If yes, steps to reproduce**: * **List of other uplifts needed**: None * **Risk to taking this patch**: Low * **Why is the change risky/not risky? (and alternatives if risky)**: The sec-high fixes are in a codepath which is not used during normal addon verification and is only triggered when given malicious inputs. The threading fix is considered high-confidence. * **String changes made/needed**: * **Is Android affected?**: Yes