PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote attackers to conduct downgrade attacks via unspecified vectors.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Polarssl |
Polarssl |
1.3.8 (including) |
1.3.8 (including) |
References