USN-871-1 fixed vulnerabilities in KDE. This update provides thecorresponding updates for KDE 4.
This update also fixes a directory traversal flaw in KDE when processinghelp:// URLs. This issue only affected Ubuntu 8.10.
Original advisory details:
It was discovered that the KDE libraries could use KHTML to process an unknown MIME type. If a user or application linked against kdelibs were tricked into opening a crafted file, an attacker could potentially trigger XMLHTTPRequests to remote sites.
The problem can be corrected by updating your system to the following
To update your system, please follow these instructions:
After a standard system upgrade you need to restart your session to effectthe necessary changes.