One of the already-patched flaws enables elevation of privilege, while the other enables remote code execution.