Debian: New linux-2.6 packages fix privilege escalation
LinuxSecurity.com: The vmsplice system call did not properly verify address arguments passed by user space processes, which allowed local attackers to overwrite arbitrary kernel memory, gaining root privileges
