There is a vulnerability in the Plasma desktop that KDE developers are currently working to patch. The details are here.

zdnet.com/article/unpatched-kd

For the moment avoid downloading .desktop or .directory files and extracting archives from untrusted sources.

Also, if you discover a similar vulnerability, it is best to send an email security@kde.org before making it public. This will give us time to patch it and keep users safe before the bad guys try to exploit it.

Follow

@kde sucks Penner just wanted props before defcon. I hope its not too much hassle for you.

Sign in to participate in the conversation
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!