14 DAY TRIAL // Canonical revealed details about Oxide vulnerabilities that have been found and fixed in Ubuntu 14.10 and Ubuntu 14.04 LTS. This update brings a few fixes, but it's nothing all that important.
Ubuntu maintainers have upgraded the Oxide libraries in order to close a number of exploits and users should have been advised as soon as possible. Oxide is the web browser engine library for Qt (QML plugin).
"It was discovered that Oxide did not correctly manage the lifetime of BrowserContext, resulting in a potential use-after-free in some circumstances. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program," reads the security notice.
This is just one of the vulnerabilities found and fixed. For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems as soon as possible.
The flaws can be fixed if you upgrade your system to the latest liboxideqtcore0 package specific to each distribution. To apply the patch, users will have to run the Update Manager application. In general, a standard system update will make all the necessary changes, and there is no need for a restart.