ZDNet

KDE rips out ability for KConfig to run shell code

KDE has fixed a vulnerability within its KDE Framework that allowed for malicious code execution simply by viewing a .desktop file, by removing the feature being exploited altogether. Earlier this ...
Bleeping Computer

KDE Vulnerability Fixed By Removing Shell Command Support

A code execution vulnerability in the KDE desktop manager has been resolved by removing support for shell commands in the KConfig configuration system. Earlier this week, BleepingComputer reported on ...
Hosted on MSN

KDE tidies up Plasma 6.5 with 60-odd fixes and smoother setup for OEMs

The KDE Plasma 6.5 graphical shell arrived last week for Unix-like operating systems, and now 6.5.1 is here for the more cautious. The team's squashed over 60 bugs – and they're by no means all new.… ...
Bleeping Computer

Zero-Day Bug in KDE 4/5 Executes Commands by Opening a Folder

An unpatched zero-day vulnerability exists in KDE 4 & 5 that could allow attackers to execute code simply by tricking a user into downloading an archive, extracting it, and then opening the folder.
Computing

New KDE Linux shell gains polish

The KDE Project has issued a new version of its desktop user interface for Linux distributions. Version 3.3 of the KDE desktop features a handful of new applications, integrates some desktop ...
Ars Technica

KDE’s new Plasma netbook interface shines in small places

The Linux platform is beginning to gain mainstream acceptance on low-cost netbook devices. The growing popularity of netbooks presents a major opportunity for the open source operating system, but it ...