The article is not just content free, it's flat wrong. This is a local privilege escalation hole, not remote; and it's in Polkit, not a kernel component. The original blog post explains it well though: https://www.alertlogic.com/blog/dont-let-grinch-steal-christmas/ I can't say I'm surprised though, Polkit always struck me as hugely overcomplicated and untrustworthy.
Thanks for explanation GJ, perfect example to indicate that you had better look for primary source when the title is sensational.