The following packages are in testing, and available for download in the testing repositories:

• nginx 1.6.3
• mysql55w 5.5.43
• php56w 5.6.8
• php56w-pecl-redis
• php56w-pecl-xdebug
• php55w 5.5.24
• php55w-pecl-redis
• php55w-pecl-xdebug
• php54w 5.4.40
• php54w-pecl-redis
• php54w-pecl-xdebug
• php54w-pecl-zendopcache

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Here are updated packages in the Yum repository:

• PHP 5.6.7 for RHEL/CentOS 6/7 changelog
• PHP 5.5.23 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.39 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.7, 5.5.23 and 5.4.39 releases fixes 3 CVEs (along with other bug fixes):
* CVE-2015-0231
* CVE-2015-2305
* CVE-2015-2331

The following packages are in testing, and available for download in the testing repositories:

• php56w 5.6.7
• php55w 5.5.23
• php54w 5.4.39

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Here are updated packages in the Yum repository:

• PHP 5.6.6 for RHEL/CentOS 6/7 changelog
• PHP 5.5.22 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.38 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.6, 5.5.22 and 5.4.38 releases fixes 1 CVE (along with other bug fixes):
* CVE-2015-0273

PHP.net also mentions it addresses CVE-2015-0235, however this was just mitigating PHP issues when the glibc security issue is present. Fixing the glibc issue by upgrading the glibc packages is by far more important, as it affects more than just PHP. Glibc is dynamically linked, so PHP didn't need to be rebuilt to fix the issue.

The following packages are in testing, and available for download in the testing repositories:

• php56w 5.6.6
• php55w 5.5.22
• php54w 5.4.38

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Here are updated packages in the Yum repository:

• PHP 5.3.29-4 for RHEL/CentOS 5.11 changelog

Note PHP.net has EOL'd (End of Life) PHP 5.3, however this Webtatic release contains the latest security fixes since then.

The PHP 5.3.29-4 security release fixes 3 CVEs
* CVE-2014-8142
* CVE-2015-0231
* CVE-2015-0232

Here are updated packages in the Yum repository:

• PHP 5.6.5 for RHEL/CentOS 6/7 changelog
• PHP 5.5.21 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.37 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.4, 5.5.20 and 5.4.36 releases fixes 3 CVEs (along with other bug fixes):
* CVE-2014-9427
* CVE-2015-0231
* CVE-2015-0232

The following packages are in testing, and available for download in the testing repositories:

• php56w 5.6.5
• php55w 5.5.21
• php54w 5.4.37

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Here are updated packages in the Yum repository:

• PHP 5.6.4 for RHEL/CentOS 6/7 changelog
• PHP 5.5.20 for RHEL/CentOS 5/6/7 changelog
• PHP 5.4.36 for RHEL/CentOS 5/6/7 changelog

The PHP 5.6.4, 5.5.20 and 5.4.36 releases fixes 1 CVE (along with other bug fixes):
* CVE-2014-8142

Additionally the unreleased PHP 5.6.3, 5.5.19 and 5.4.35 releases, which weren't suitable for production due to critical bugs, fixes 1 CVE (along with other bug fixes):
* CVE-2014-3710

The following packages are in testing, and available for download in the testing repositories:

• php56w 5.6.4
• php55w 5.5.20
• php54w 5.4.36

EL7 versions of the packages are delayed due to a non backwards-compatible update in Mariadb stopping compilation that is being fixed.

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing