The vmsplice system call did not properly verify address arguments
passed by user space processes, which allowed local attackers to
overwrite arbitrary kernel memory, gaining root privileges
(CVE-2008-0010,
CVE-2008-0600)
In the vserver-enabled kernels, a missing access check on certain
symlinks in /proc enabled local attackers to access resources ...