The rPath linux group has released another update for the PHP5 packages in their distribution:
Previous versions of the php5 package contain multiple vulnerabilities, the most serious of which involve several Denial of Service attacks (application crashes and temporary application hangs). It is not currently known that these vulnerabilities can be exploited to execute malicious code.
You can get the specifics of what's being fixed as well as download the latest packages from the rpath.com website.