Hi,
thanks to vanmeeuven for finding the probable root cause (missing
variable in the client-side NSS build, see above linked ticket). I'm
confirming that it works by explicitly setting TLS version to 1.1 in
Thunderbird (*).

In case someone has experience with Fedora bug reporting, please go
ahead :) If not, I'll try to file one.

-Teemu

(*) Preferences -> Advanced -> Config editor -> Set
"security.tls.version.max" to "2" which currently equals TLS 1.1.
According to the Mozilla docs, "3" equals 1.2 instead of the problematic
1.3 , but that's probably just "whatever is newest". Note that you
should document and probably reset this change in the future. While TLS
1.1 is still considered secure by most people, that is not going to be
the case forever.