Latest Updates, PHP 5.6.6, 5.5.22, 5.4.38

Here are updated packages in the Yum repository:

The PHP 5.6.6, 5.5.22 and 5.4.38 releases fixes 1 CVE (along with other bug fixes):
* CVE-2015-0273

PHP.net also mentions it addresses CVE-2015-0235, however this was just mitigating PHP issues when the glibc security issue is present. Fixing the glibc issue by upgrading the glibc packages is by far more important, as it affects more than just PHP. Glibc is dynamically linked, so PHP didn't need to be rebuilt to fix the issue.

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w 5.6.6
  • php55w 5.5.22
  • php54w 5.4.38

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w 5.6.5
  • php55w 5.5.21
  • php54w 5.4.37

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Archive repositories to be moving to archive.webtatic.com on February 1st

Due to the increasing size of the archive repositories as old releases get moved to them, and the fixed disk space of the repository servers, the archive repositories will be moving to http://archive.webtatic.com/ from February 1st, which is already serving them.

This means from February 1st, they will no longer be on the http://*.repo.webtatic.com/ servers.

This affects the following repositories:

  • el5-archive
  • el6-archive
  • el7-archive

It will not affect the el5/6/7 repositories or the testing repositories.

What you need to do

Nothing, except if you're intentionally mirroring the archive repositories.

Traffic from these repositories will be redirected to the archive domain's URLs, so unless you are mirroring the archive repositories, your servers will continue to be able to download from the archive (if you have enabled it).

If you are mirroring the archive repositories at the moment, and would like to continue to, please contact me at andy@webtatic.com so I can understand your use-case for it, and whether to sort out another arrangement.

Latest Updates PHP 5.6.4, 5.5.20, 5.4.36

Here are updated packages in the Yum repository:

The PHP 5.6.4, 5.5.20 and 5.4.36 releases fixes 1 CVE (along with other bug fixes):
* CVE-2014-8142

Additionally the unreleased PHP 5.6.3, 5.5.19 and 5.4.35 releases, which weren't suitable for production due to critical bugs, fixes 1 CVE (along with other bug fixes):
* CVE-2014-3710

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w 5.6.4
  • php55w 5.5.20
  • php54w 5.4.36

EL7 versions of the packages are delayed due to a non backwards-compatible update in Mariadb stopping compilation that is being fixed.

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w-pecl-xdebug 2.2.6
  • php55w-pecl-xdebug 2.2.6
  • php54w-pecl-xdebug 2.2.6

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing