The kernel fix prevents that, using mount flags alone only restrict the vulnerability but it doesn't make it go away.