lib: [aes-cmac] fix for potential out of scope read

- up to 16 bytes can be read outside the buffer on flush operation
- number of conditions must be met to make it happen (similar to issue #107)
- SSE, AVX implementations affected
- all architecture interfaces affected except avx512 type-2