Recently Chris Evans published a series of blog posts where he pointed out serious security problems of common Linux Desktop systems. A combination of automatic downloads (from Chrome), automatic parsing of new files by desktop search systems and libraries with a huge attack surface and support for countless file formats cause a very explosive combination. What's wrong with Linux Desktop security and how can we fix it?