14 DAY TRIAL // On December 16, Canonical published details about a DjVuLibre vulnerability for its Ubuntu 12.04 LTS (Precise Pangolin) operating system.
According to Canonical, DjVuLibre could have been made to crash or run programs as the user login if it opened a specially crafted file.
It has been discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system was tricked into processing a specially crafted DjVu file, applications could be made to crash, resulting in a denial of service, or possibly execute arbitrary code.
Users can simply fix the security flaws by upgrading the operating systems to the latest libdjvulibre21 package.
A normal system update executed with the Update Manager will implement all the necessary changes. A complete system restart is necessary.
A full list of instructions can be found in the official wiki.