Network Security Services (NSS) is a set of libraries designed to supportcross-platform development of security-enabled client and serverapplications.It was found that NSS permitted skipping of the ServerKeyExchange packetduring a handshake involving ECDHE (Elliptic Curve Diffie-Hellman keyExchange). A remote attacker could use this flaw to bypass theforward-secrecy of a TLS/SSL connection. (CVE-2015-2721)A flaw was found in the way NSS verified certain ECDSA (Elliptic CurveDigital Signature Algorithm) signatures. Under certain conditions, anattacker could use this flaw to conduct signature forgery attacks.(CVE-2015-2730)Red Hat would like to thank the Mozilla project for reporting this issue.Upstream acknowledges Karthikeyan Bhargavan as the original reporter ofCVE-2015-2721, and Watson Ladd as the original reporter of CVE-2015-2730.The nss packages have been upgraded to upstream version 3.19.1, whichprovides a number of bug fixes and enhancements over the previous version.All nss users are advised to upgrade to these updated packages, whichcorrect these issues.