A couple of weeks ago, the KDE community fixed a security vulnerability discovered by Dominik Penner in the KConfig component, the configuration settings framework of the KDE Plasma desktop environment, which could allow an attacker to execute malicious code through a specially crafted .desktop file included in an archive that was opened in the file manager. The issue affected versions of the KDE Frameworks open-source software suite smaller than release 5.61.0 announced on August 10th, 2019. Patches were made available within two days from the initial bug report, and they were making their way into the stable software repositories of the most popular GNU/Linux distributions since then.