Here are updated packages in the Yum repository:

• PHP 5.6.6 for RHEL/CentOS 6/7 changelog
• PHP 5.5.22 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.38 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.6, 5.5.22 and 5.4.38 releases fixes 1 CVE (along with other bug fixes):
* CVE-2015-0273

PHP.net also mentions it addresses CVE-2015-0235, however this was just mitigating PHP issues when the glibc security issue is present. Fixing the glibc issue by upgrading the glibc packages is by far more important, as it affects more than just PHP. Glibc is dynamically linked, so PHP didn't need to be rebuilt to fix the issue.

As previously mentioned, archive repositories were to be moved and only located on http://archive.webtatic.com.

This is now complete

Here are updated packages in the Yum repository:

• PHP 5.3.29-4 for RHEL/CentOS 5.11 changelog

Note PHP.net has EOL'd (End of Life) PHP 5.3, however this Webtatic release contains the latest security fixes since then.

The PHP 5.3.29-4 security release fixes 3 CVEs
* CVE-2014-8142
* CVE-2015-0231
* CVE-2015-0232

Here are updated packages in the Yum repository:

• PHP 5.6.5 for RHEL/CentOS 6/7 changelog
• PHP 5.5.21 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.37 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.4, 5.5.20 and 5.4.36 releases fixes 3 CVEs (along with other bug fixes):
* CVE-2014-9427
* CVE-2015-0231
* CVE-2015-0232

Due to the increasing size of the archive repositories as old releases get moved to them, and the fixed disk space of the repository servers, the archive repositories will be moving to http://archive.webtatic.com/ from February 1st, which is already serving them.

This means from February 1st, they will no longer be on the http://*.repo.webtatic.com/ servers.

This affects the following repositories:

• el5-archive
• el6-archive
• el7-archive

It will not affect the el5/6/7 repositories or the testing repositories.

What you need to do

Nothing, except if you're intentionally mirroring the archive repositories.

Traffic from these repositories will be redirected to the archive domain's URLs, so unless you are mirroring the archive repositories, your servers will continue to be able to download from the archive (if you have enabled it).

If you are mirroring the archive repositories at the moment, and would like to continue to, please contact me at andy@webtatic.com so I can understand your use-case for it, and whether to sort out another arrangement.

Here are updated packages in the Yum repository:

• PHP 5.6.4 for RHEL/CentOS 6/7 changelog
• PHP 5.5.20 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.36 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.4, 5.5.20 and 5.4.36 releases fixes 1 CVE (along with other bug fixes):
* CVE-2014-8142

Additionally the unreleased PHP 5.6.3, 5.5.19 and 5.4.35 releases, which weren't suitable for production due to critical bugs, fixes 1 CVE (along with other bug fixes):
* CVE-2014-3710

Here are updated packages in the Yum repository:

• PHP 5.3.29-3 for RHEL/CentOS 5.10 changelog

Note PHP.net has EOL'd (End of Life) PHP 5.3, however this Webtatic release contains the latest security fixes since then. Currently I'm still deciding on how to proceed with either supporting PHP 5.3 for longer, or making it EOL. Maintaining it requires additional effort which I'd be interested in seeing if you would consider paying a subscription for.

To register an interest, email me at andy@webtatic.com.

The PHP 5.3.29-3 security release fixes 4 CVEs
* CVE-2014-3710
* CVE-2014-3668
* CVE-2014-3669
* CVE-2014-3670

Here are updated packages in the Yum repository:

• PHP 5.6.2 for RHEL/CentOS 6/7 changelog
• PHP 5.5.18 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.34 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.2, 5.5.18 and 5.4.34 releases fixes 3 CVEs (along with other bug fixes):
* CVE-2014-3668
* CVE-2014-3669
* CVE-2014-3670

Here are updated packages in the Yum repository:

• PHP 5.3.29-2 for RHEL/CentOS 5.10 changelog

Note PHP.net has EOL'd (End of Life) PHP 5.3, however this Webtatic release contains the latest security fixes since then. Currently I'm still deciding on how to proceed with either supporting PHP 5.3 for longer, or making it EOL. Maintaining it requires additional effort which I'd be interested in seeing if you would consider paying a subscription for.

To register an interest, email me at andy@webtatic.com.

The PHP 5.3.29-2 security release fixes 5 CVEs
* CVE-2014-2497
* CVE-2014-3587
* CVE-2014-3597
* CVE-2014-4670
* CVE-2014-4698

They are finally here. Webtatic now has released a Webtatic EL7 Yum repository for RHEL and CentOS 7.0.

The packages that are included in this release are:

* PHP 5.6
* PHP 5.5
* PHP 5.4
* Nginx 1.6

The Webtatic EL7 repository is accessible via https by default, although you can alter the /etc/yum.repos.d/webtatic*.repo files to change to http if needed.

Additionally, the EL6 and EL5 repositories can also be accessible via https, however will default to http due to potential issues in earlier RHEL/CentOS 6.x and 5.x releases. The version of the 'openssl' package determines whether https will work.

The reason for the delay in getting EL7 released was due to the general development and testing frameworks I use to roll out packages being slow to update for CentOS/RHEL 7.0 support, some of which I helped contribute support for.