I'm curious why you marked '#1 Fix potential crash with sys_move_pages.' as
non-security. I am not aware of any path to privilege escalation from this
bug, but it's definitely a denial of service, and an impressively effective
information leak attack (as demonstrated by spender's published exploit
code). It's been assigned CVE-2010-0415 in light of this.