It seems to be based on CVE-2014-3153 (Linux kernel) Local privilege escalation in futex syscall. That’s a very old one and should be patched already. If not, it’s time to switch to the unofficial 4.4.4 port from unknown sources. But if you read the thread @Stefan linked to it looks like they are/were “aware”. For the lack of a better word right now. I don’t see the CVE patched in a Changelog or something like that right now.