Does this mean people can infect your kernel without you noticing?
Not like that's never happened before...
EDIT:
"On its own, this bug does not allow remote code execution, but does enable non-administrator accounts to execute code as if they were an administrator"
Hmmm, sounds worse now...