New KDE binary RPMs have been released, as promised, with a fix for the SSL certificate vulnerability affecting Windows and Konqueror. KDE 3.0.3 primarily provides stability enhancements over KDE 3.0.2, which shipped in early July 2002, and also contains a security correction for SSL (Internet security) certificate handling. Also, a patch for KDE 2.2.2 is available for those who prefer not to upgrade their systems to KDE 3.
In the mean time, MS has decided to whitewash the affair and persuade users that the bug in their operating system is harmless, in flagrant disregard of the handy exploit code that's already been released.
News source: The Reg
Download: patch for KDE 2.2.2
-1 Comments - Add comment