SWRA803 February 2020 CC2540 , CC2541
TI-PSIRT-2019-060025
8.1
CC2540/CC2541 BLE-Stack SDK v1.5.0 and earlier
The potential vulnerability can impact the OAD image encryption functionality.
The following service-pack release addresses the potential vulnerability:
Customers of affected products should apply this service-pack and consider further system-level security measures as appropriate. Customers are solely responsible for the security of their products and are encouraged to assess the possible risk of any potential security vulnerability.
We would like to thank researchers from COSIC, KU Leuven and imec for reporting this potential vulnerability to the TI Product Security Incident Response Team (PSIRT) and working toward a coordinated report.
Texas Instruments, Bluetooth Low Energy software stack