September 11, 2002
KDE cross-site scripting / secure cookie vulnerabity
Dre writes: "The KDE Project today issued two security alerts affecting the KDE handling of browser cookies. The first relates to cross-site scripting, for which a patch is available, and the second relates to the handling of encrypted cookies, which was fixed in KDE 3.0.3. More information on the dot. Users are encouraged to upgrade to a patched KDE 3.0.3 (only kdelibs needs to be recompiled)."
Link: The Dot