September 11, 2002

KDE cross-site scripting / secure cookie vulnerabity

Dre writes: "The KDE Project today issued two security alerts affecting the KDE handling of browser cookies. The first relates to cross-site scripting, for which a patch is available, and the second relates to the handling of encrypted cookies, which was fixed in KDE 3.0.3. More information on the dot. Users are encouraged to upgrade to a patched KDE 3.0.3 (only kdelibs needs to be recompiled)."

Link: The Dot


  • Security
Click Here!