14 DAY TRIAL // On July 16, Canonical published details about File Roller vulnerabilities for its Ubuntu 13.04 and Ubuntu 12.10 operating systems.
According to Canonical, the File Roller package could have been made to create or overwrite files.
It has been discovered that File Roller incorrectly sanitized paths. If a user was tricked into extracting a specially-crafted archive, an attacker could have created and overwritten files outside of the extraction directory.
For a more detailed description of the security problems, you can visit Canonical's security notification.
Users can simply fix the security flaws by upgrading the operating systems to the latest file roller package specific to each distribution.
A normal system update, executed with the Update Manager, will implement all the necessary changes. A complete restart is not necessary.
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.