Ubuntu Security Notice 352-1: Various flaws have been reported that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious email containing JavaScript. Please note that JavaScript is disabled by default for emails, and it is not recommended to enable it.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/50299/USN-352-1.txt
Source: https://packetstormsecurity.com/files/50299/Ubuntu-Security-Notice-352-1.html