A problem has been discovered in the way in which the KDE webbrowser Konqueror handles SSL certificates. SSL certificates are used by websites to prove that they are indeed the website the user thinks they are. The following advisory has been released to bring this issue under the attention of all KDE users.
KDE Security Advisory: Konqueror SSL vulnerability
1. Systems affected:
All versions of KDE up to and including KDE 3.0.2
KDE's SSL implementation fails to check the basic constraints on
Users of Konqueror and other SSL enabled KDE software may fall victim
Upgrade kdelibs to KDE 3.0.3. A patch for KDE 2.2.2 is available as