1780022 - NSS 3.79.x patch release to uplift bug 1777672

Status: RESOLVED FIXED

(NSS :: Libraries, enhancement, P1)

Description

[Kai Engert [:KaiE:]]

Could you please uplift bug 1777672 into the NSS 3.79 branch, and release it as NSS 3.79.1 and uplift into mozilla-esr102 ?

It's NOT super urgent, but some users run into it, and retrying will not fix it, so users will be stuck on that problem. If there is an NSS update planned for 102.x, I guess bug 1777672 could wait for a few weeks.

I see 23 crashes during the last 3 months, half on 91.x and 102.x each.
Which means, it would be worth uplifting into 91.x, too. At least as a ride-along.

Comment 1

[Kai Engert [:KaiE:]]

(to find crashes, search crash-stats.mozilla.org for CERT_GetCertNicknameWithValidity)

Comment 2

[Dennis Jackson]

Hi Kai, thank you for flagging. We'll shoot for 102.2 which will go out to users on August 23rd.

Comment 3

[Ryan VanderMeulen [:RyanVM]]

This missed the 102.2esr release. It'll have to go into 102.3esr or later.

Comment 5

[Kai Engert [:KaiE:]]

Reopening, because this bug was specifically to track the uplift of bug 1777672 into an NSS 3.79.x release, and that hasn't happened yet.
(Because this hasn't happened withg bug 1785788, it cannot be a duplicate of that bug.)

Consequently, distributions which package NSS separately from the application still get this crash.

Comment 6

[Kai Engert [:KaiE:]]

Dennis, it's been another 2 months, could the NSS team please release NSS 3.79.2 ?

Comment 7

[Magnus Melin [:mkmelin]]

See bug 1777672 comment 10 and comment 11. Seems the fix already happened.
https://hg.mozilla.org/releases/mozilla-esr102/file/tip/security/nss/lib/certhigh/certvfy.c#l1916

Comment 8

[John Schanck [:jschanck]]

It was fixed in Firefox, but Kai is asking for it to be included in an NSS release. I'll cut a 3.79.2.

Comment 9

[John Schanck [:jschanck]]

https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_79_2_RTM/src/

Comment 10

[Kai Engert [:KaiE:]]

Thank you very much!