Canonical Patches Two Linux Kernel Vulnerabilities in Ubuntu 14.04 LTS

It appears that an information leak was discovered in the Linux kernel’s md (multiple devices) driver, allowing privileged, local attackers to retrieve sensitive information from the kernel. Moreover, it was discovered that Linux kernel’s vhost driver didn’t properly release the userspace stored log file descriptor, which could allow a privileged attacker to cause a denial of service (DoS).