Updated Tcl/Tk packages for Red Hat Linux 7 and 7.1 fix two local vulnerabilities. [Updated 16 April 2003] Added packages for Red Hat Linux on IBM iSeries and pSeries systems.
The Tcl/Tk development environment comprises a number of applications tcl, tk, tix, tclX, expect, and itcl. The expect application, prior to version 5.32, searched for its libraries in /var/tmp before searching in other directories. This behavior could allow local users to gain root privileges by writing a Trojan horse library and getting the root user to run mkpasswd. The tcl/tk package searched for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code by writing Trojan horse library that is under a user-controlled directory. These issues affect Red Hat Linux versions 7 and 7.1, they were fixed in later Red Hat releases. All users should upgrade to the errata packages which are not vulnerable to these issues.