14 DAY TRIAL // Canonical revealed that a number of Oxide vulnerabilities have been found and fixed in its Ubuntu 14.10 and Ubuntu 14.04 operating system
The developers have released a new update of the Oxide packages (oxide-qt is the web browser engine library for Qt, QML plugin). Even if it might not seem like an important update, it would be a great idea to upgrade the operating system as soon as possible.
"Multiple type confusion bugs were discovered in the V8 bindings in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the sandboxed render process," reads the security notice.
This is just one of the exploits that have been identified by the developer, and for a more detailed description of these problems, you can see Canonical's security notification.
The flaws can be fixed if you upgrade your system to the latest liboxideqtcore0, oxideqt-codecs, oxideqt-chromedriver, and oxideqt-codecs-extra packages specific to each distribution. To apply the patch, you will have to run the Update Manager application.
In general, a standard system update will make all the necessary changes. It's not necessary to restart your system.