Short bio: Computer Scientist, FOSS supporter (read more)
Tux Machines (TM)-specific
"Erik Sjölund has reported some vulnerabilities in KDE, which can be exploited by malicious, local users to gain escalated privileges and potentially by malicious people to compromise a vulnerable system."
"The vulnerabilities are caused due to boundary errors in fliccd and can be exploited to cause stack-based buffer overflows... in KDE 3.3 through 3.3.2."
No word from KDE on the subject as of yet.