Ubuntu Security Notice 2771-1 - It was discovered that click did not properly perform input sanitization during click package installation. If a user were tricked into installing a crafted click package, a remote attacker could exploit this to escalate privileges by tricking click into installing lenient security policy for the installed application.
c47456cb5f6d9641c7635a5f7d12dbff57c3cb8b6439f0ed22fc0d50bd40eb61