---

PHP 5.6.2 and 5.4.34 Update for Critical Security Flaws

In the PHP 5.6.2 update, four security vulnerabilities are being fixed including: CVE-2014-3668, CVE-2014-3669 and CVE-2014-3670. Bug #68089 does not yet have a CVE number but it’s a non-trivial Null byte injection flaw.