Alpine: amd-ucode, multiple linux-firmware packages: security update to 20220815-r1 (deprecated)

medium Tenable Self-Hosted Container Security Plugin ID 409770

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices
does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type (and
LT_ADDRESS and LT_ADDR) after completion of the LMP setup procedure, allowing attackers in radio range to
trigger a denial of service (firmware crash) via a crafted LMP packet. (CVE-2021-34145)

- The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception
of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service
and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
(CVE-2021-34146)

- The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not
properly handle the reception of a malformed LMP timing accuracy response followed by multiple
reconnections to the link slave, allowing attackers to exhaust device BT resources and eventually trigger
a crash via multiple attempts of sending a crafted LMP timing accuracy response followed by a sudden
reconnection with a random BDAddress. (CVE-2021-34147)

- The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices
does not properly handle the reception of LMP_max_slot with a greater ACL Length after completion of the
LMP setup procedure, allowing attackers in radio range to trigger a denial of service (firmware crash) via
a crafted LMP packet. (CVE-2021-34148)

See Also

https://git.alpinelinux.org/aports/commit/?id=3d2a14546d380c11bd5f3ee0f87aeeb79c5650fc

https://git.alpinelinux.org/aports/commit/?id=78b8db12f2771db32ef5ac335673f4c881a98cfb

Plugin Details

Severity: Medium

ID: 409770

Version: Revision 1.24

Type: Local

Published: 10/5/2022

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.18

CVSS v2

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 4.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

CVSS Score Source: CVE-2021-34148

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 8/30/2022

Vulnerability Publication Date: 9/7/2021

Reference Information

CVE: CVE-2021-34145, CVE-2021-34146, CVE-2021-34147, CVE-2021-34148