CVE fix applied directly to 2.6.43
  This is a backport from 2.6.44

 *  Fix for CVE-2015-3240: if KE payload is 0, then exponentiation fails, tripping a passert for NSS [MCR]