KDE Heap Overflow Vulnerability Found

sayanchak writes "An incorrect bounds check has been discovered in kjs, the JavaScript interpreter engine used by Konqueror and other parts of KDE, that allows a heap based buffer overflow when decoding specially crafted UTF-8 encoded URI sequences. It might allow malicious Javascript code to perform a heap overflow and crash Konqueror or even execute arbitrary code. Source diff patches for KDE 3.2.0 - 3.3.2 and KDE 3.4.0 - 3.5.0 are available."

Re:This is why I use Windows

then meta mod the now grandparent and parent positively!!
and mod the... ohhh, moderators make their own decisions? :-p

Arrgh

[harris+s+newman]

I'm installing Gentoo right now...

KDE Pros/cons

[XMilkProject]

Since we've got alot of knowledgable KDE people in this thread, and we've already had a good discussion about the vulnerability, I'm very interesting in hearing some opinions on KDE versus Gnome.

I've been using Linux for quite some time, but until recently had used a windows box for most of my Desktop work, such as multimedia or office work. After deciding to switch entirely to linux I initially started using KDE, but quickly found Gnome was also very nice, and a bit less bloated.

Can anyone comment on the benefits of KDE vs. Gnome on a technical level? To me they seem almost identical on the surface, are they also very similar beneath the surface? What do you all use?

As a side note, I've also enjoyed using much lighter window managers for helping performance in multimedia tasks, does anyone have a favorite 'bare-bones' manager? And how to you overcome the lack of apparent features in these bare-bones managers.