Plaintext recovery and tag guessing attacks on authenticated encryption algorithm COLM