Researcher Dominic Penner ΠΎΠΏΡΠ±Π»ΠΈΠΊΠΎΠ²Π°Π» unpatched vulnerability in KDE (Dolphin, KDesktop). If the user opens a directory containing a specially constructed file of extremely simple structure, the code in that file will be executed on behalf of the user. The file type is determined automatically, so the main content and file size can be anything. However, it requires the user to open the file directory themselves. The cause of the vulnerability is said to be insufficient adherence to the FreeDesktop specification by KDE developers.
Source: linux.org.ru