like it or not, despite the fact that SELinux is in the kernel, most kernel folks (like most
other admins) don't use it. As such the fact that root can do something nasty is not
considered a critical/exploitable fix
as for the one where you complain about no CVE number, is there a number allocated for this,
or are you complaining becouse the person who found and fixed the problem didn't jump through
whatever hoops are needed to create one first?
for the one that's in Linus' tree but didn't get into -stable, did anyone send it to -stable
and they rejected it, or is it one of the many patches that got upstream that the author
didn't send to -stable?
as for the one in vendorsec, it is disappointing that vendors are taking this long to deal