PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote malicious users to conduct downgrade attacks via unspecified vectors.
polarssl polarssl 1.3.8