With Linux.com not publishing a Linux Advisory this week, this was the closest I could come up with.
Late last month, K Desktop Environment (KDE) developers announced the discovery of a serious vulnerability in KDE versions 3.2 through 3.4. A patch was issued, but the patch itself is faulty and introduces new vulnerabilities. This week, KDE issued another patch to patch the patch.
On April 20, KDE released a patch for a vulnerability Kommander, which allows scripts to run arbitrary code without user confirmation. Another patch, released April 21, attempted to eliminate vulnerabilities in kimgio, which allows the execution of malicious code through "specially-crafted" images.
Full article from DesktopLinux.com
http://www.linuxlinks.com/portal/news/article.php?story=2005052104210552