14 DAY TRIAL // Canonical revealed details about an unzip exploit in Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems that has been found and corrected. It might not seem like a big issue and it' not, but it doesn't mean that an upgrade is not welcomed.
The unzip library is the one handling the extraction and compression of .zip files, so you can imagine why it's important that it works properly and that it's not exposed to vulnerabilities.
"Michal Zalewski discovered that unzip incorrectly handled certain malformed zip archives. If a user or automated system were tricked into processing a specially crafted zip archive, an attacker could possibly execute arbitrary code," is noted in the security notice.
The flaws can be fixed if you upgrade your system(s) to the latest strongswan-ike package specific to each distribution. To apply the patch, run the Update Manager application or use the terminal. Just open a terminal and enter the following commands (root will be needed):
sudo apt-get dist-upgrade