nss before version 3.30 is vulnerable to a remote denial of service during the session handshake when using SessionTicket extension and ECDHE-ECDSA. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9574