Hi Everyone,
There is a new security vulnerability discovered on the PSA Driver API for CryptoCell enabled platforms, described as "Partial tag comparison when using Chacha20-Poly1305 on the PSA driver API interface in CryptoCell enabled platforms".
Please find the security advisory specific to TF-M and patches that have been developed as per the TrustedFirmware.org security process [1] below :
* TF-M Security advisory: TFMV-6: Add cc3xx_partial_tag_compare_on_chacha20_poly1305 advisory (I44bc426f) · Gerrit Code Review (trustedfirmware.org)https://review.trustedfirmware.org/c/TF-M/trusted-firmware-m/+/22995
* Patch to fix the issue has been already merged on master branch as commit https://git.trustedfirmware.org/TF-M/trusted-firmware-m.git/commit/?id=2e821...
* TF-Mv1.8.1 will be released in the next days containing the same hotfix
Please let us know if you have any comments.
Best regards, /Antonio
[1] https://developer.trustedfirmware.org/w/collaboration/security_center/report...https://developer.trustedfirmware.org/w/collaboration/security_center/reporting/