Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix: * A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library. Bug Fix: * The Network Security Services code and Certificate Authority list have been updated to meet the recommendations as published with the latest Mozilla Firefox Extended Support Release . The updated CA list improves compatibility with the certificates that are used in the Internet Public Key Infrastructure . To avoid certificate validation refusals, Red Hat recommends installing the updated CA list on June 12, 2017