Hi Everyone,

There is a new security vulnerability discovered on the PSA Driver API for CryptoCell enabled platforms, described as "Partial tag comparison when using Chacha20-Poly1305 on the PSA driver API interface in CryptoCell enabled platforms".

Please find the security advisory specific to TF-M and patches that have been developed as per the TrustedFirmware.org security process [1] below :

TF-M Security advisory: TFMV-6: Add cc3xx_partial_tag_compare_on_chacha20_poly1305 advisory (I44bc426f) · Gerrit Code Review (trustedfirmware.org)

Patch to fix the issue has been already merged on master branch as commit https://git.trustedfirmware.org/TF-M/trusted-firmware-m.git/commit/?id=2e82124af29b58abcc98608196a63b3c5daf603b

TF-Mv1.8.1 will be released in the next days containing the same hotfix

Please let us know if you have any comments.

Best regards,

/Antonio

[1] https://developer.trustedfirmware.org/w/collaboration/security_center/report...