pkg syscall (openbsd-386), const SIOCSVNETID ideal-int
pkg syscall (openbsd-386), const SYS_CLOCK_GETRES = 89
pkg syscall (openbsd-386), const SYS_CLOCK_GETTIME = 87
pkg syscall (openbsd-386), const SYS_CLOCK_SETTIME = 88
pkg syscall (openbsd-386), const SYS_FHSTATFS = 65
pkg syscall (openbsd-386), const SYS_FSTAT = 53
pkg syscall (openbsd-386), const SYS_FSTATAT = 42
pkg syscall (openbsd-386), const SYS_FSTATFS = 64

pkg debug/elf, const R_ARM_THM_JUMP8 = 103
pkg debug/elf, const R_ARM_THM_JUMP8 R_ARM
pkg debug/elf, const R_ARM_THM_MOVT_ABS = 48
pkg debug/elf, const R_ARM_THM_MOVT_ABS R_ARM
pkg debug/elf, const R_ARM_THM_MOVT_BREL = 88
pkg debug/elf, const R_ARM_THM_MOVT_BREL R_ARM
pkg debug/elf, const R_ARM_THM_MOVT_PREL = 50
pkg debug/elf, const R_ARM_THM_MOVT_PREL R_ARM
pkg debug/elf, const R_ARM_THM_MOVW_ABS_NC = 47

					cycleInfo.cycleCompleted = cycleInfo.cycleCompleted[len(cycleInfo.cycleCompleted)-dataUsageUpdateDirCycles:]
				}
				globalScannerMetrics.setCycle(&cycleInfo)
				tmp := make([]byte, 8, 8+cycleInfo.Msgsize())
				// Cycle for backward compat.
				binary.LittleEndian.PutUint64(tmp, cycleInfo.next)
				tmp, _ = cycleInfo.MarshalMsg(tmp)
				err = saveConfig(ctx, objAPI, dataUsageBloomNamePath, tmp)

pkg debug/elf, const R_PPC64_GOT_TPREL16_HA R_PPC64
pkg debug/elf, const R_PPC64_GOT_TPREL16_HI = 89
pkg debug/elf, const R_PPC64_GOT_TPREL16_HI R_PPC64
pkg debug/elf, const R_PPC64_GOT_TPREL16_LO_DS = 88
pkg debug/elf, const R_PPC64_GOT_TPREL16_LO_DS R_PPC64
pkg debug/elf, const R_PPC64_JMP_SLOT = 21
pkg debug/elf, const R_PPC64_JMP_SLOT R_PPC64
pkg debug/elf, const R_PPC64_NONE = 0

pkg log/syslog (freebsd-arm64), const LOG_EMERG Priority
pkg log/syslog (freebsd-arm64), const LOG_ERR = 3
pkg log/syslog (freebsd-arm64), const LOG_ERR Priority
pkg log/syslog (freebsd-arm64), const LOG_FTP = 88
pkg log/syslog (freebsd-arm64), const LOG_FTP Priority
pkg log/syslog (freebsd-arm64), const LOG_INFO = 6
pkg log/syslog (freebsd-arm64), const LOG_INFO Priority
pkg log/syslog (freebsd-arm64), const LOG_KERN = 0

0000070 2e 4c 6e a5 60 45 02 62 81 95 b6 94 9e 9e 77 e7
0000080 d0 43 b6 f8 71 df 96 3c e7 a4 69 ce bf cf e9 79
0000090 ce ef 79 3f bf f1 31 db b6 bb 31 76 92 e7 f3 07
00000a0 8b fc 9c ca cc 08 cc cb cc 5e d2 1c 88 d9 7e bb
00000b0 4f bb 3a 3f 75 f1 5d 7f 8f c2 68 67 77 8f 25 ff
00000c0 84 e2 93 2d ef a4 95 3d 71 4e 2c b9 b0 87 c3 be
00000d0 3d f8 a7 60 24 61 c5 ef ae 9e c8 6c 6d 4e 69 c8

pkg log/syslog (netbsd-arm64-cgo), const LOG_EMERG Priority
pkg log/syslog (netbsd-arm64-cgo), const LOG_ERR = 3
pkg log/syslog (netbsd-arm64-cgo), const LOG_ERR Priority
pkg log/syslog (netbsd-arm64-cgo), const LOG_FTP = 88
pkg log/syslog (netbsd-arm64-cgo), const LOG_FTP Priority
pkg log/syslog (netbsd-arm64-cgo), const LOG_INFO = 6
pkg log/syslog (netbsd-arm64-cgo), const LOG_INFO Priority
pkg log/syslog (netbsd-arm64-cgo), const LOG_KERN = 0

pkg log/syslog (darwin-arm64), const LOG_EMERG Priority
pkg log/syslog (darwin-arm64), const LOG_ERR = 3
pkg log/syslog (darwin-arm64), const LOG_ERR Priority
pkg log/syslog (darwin-arm64), const LOG_FTP = 88
pkg log/syslog (darwin-arm64), const LOG_FTP Priority
pkg log/syslog (darwin-arm64), const LOG_INFO = 6
pkg log/syslog (darwin-arm64), const LOG_INFO Priority
pkg log/syslog (darwin-arm64), const LOG_KERN = 0

**Fixed Versions**:
  - kubelet v1.22.2
  - kubelet v1.21.5
  - kubelet v1.20.11
  - kubelet v1.19.15

This vulnerability was reported by Fabricio Voznika and Mark Wolters of Google.

**CVSS Rating:** High (8.8) [CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H](https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

## Changes by Kind

### Feature

This vulnerability was discovered by James Sturtevant @jsturtevant and Mark Rossetti @marosset during the process of fixing CVE-2023-3676 (that original CVE was reported by Tomer Peled @tomerpeled92)


**CVSS Rating:** High (8.8) [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H](https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)