kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain sensitive information via an invalid certificate.
http://www.securityfocus.com/bid/68113
http://www.kde.org/info/security/advisory-20140618-1.txt
http://lists.opensuse.org/opensuse-updates/2015-03/msg00068.html