Raphaël Enrici

**Name of the Vulnerable Software and Affected Versions** KDE versions prior to 3.0.5 kdebase versions 2.2.2 and 3.1.3 kdebase-devel versions 2.2.2 and 3.1.3 **Description** The issue allows attackers to cause a crash and access the desktop session, potentially leading to a violation of confidentiality, integrity, and availability of protected information. The exploitation of these vulnerabilities can be carried out remotely. **Recommendations** For KDE versions prior to 3.0.5, update to version 3.0.5 or later. For kdebase versions 2.2.2 and 3.1.3, update to a version later than 3.1.3. For kdebase-devel versions 2.2.2 and 3.1.3, update to a version later than 3.1.3. As a temporary workaround, consider restricting access to the desktop session until a patch is available.