Andreas Nolden reported a flaw in the QT expands certain UTF8 characters. This
could lead to a XSS attack withing konqueror. There is also potential for this
flaw to affect other QT applications that attempt to sanitize user supplied
data. The example supplied by the KDE security team would be the ability to
inject /../ characters into a filename.