update for phpMyAdmin
- update to 3.4.7.1 (fix for bnc#728243)
- [security] Fixed possible local file inclusion in XML import
(CVE-2011-4107), see PMASA-2011-17
http://www.phpmyadmin.net/home_page/security/PMASA-2011-17.php
-
Submitted by
Ludwig Nussel (lnussel)
Fixed bugs
bnc#728243
VUL-0: phpMyAdmin: Arbitrary local file read flaw
CVE#CVE-2011-4107
The simplexml_load_string function in the XML import plug-in (libraries/import/xml.php) in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity referenc
