I salute Magento and all its partners for the notifications about security issues found.
Magento notify you in the back-office with some notifications.
These patchs are all available from the Magento download page and are distributed under a .sh file. You have just to run mypatchfile.sh and that’s it, you are secured!?