This is an old revision of the document!
On March 18, 2014, Alexandre Duc reported an attack on CBA v1 expoliting a flaw in the paddings in the Cryptographic Competitions group [see this thread] . On March 30, 2014, the designers published CBA v1-1 which addresses some minor issues regarding the offsets and paddings [see this thread].