A denial of service flaw was found in the way NSS handled handshake packets when SessionTicket extension was enabled on the TLS server side and ECDSA certificates were used. A remote attacker could use this flaw to crash TLS servers compiled against NSS. More details and reproducer available at: https://bugzilla.mozilla.org/show_bug.cgi?id=1320695