5.4.392015-03-19stable(Use After Free Vulnerability in unserialize()). (CVE-2015-2787)68976CVE-2015-2787(Per Directory Values overrides PHP_INI_SYSTEM configuration options).69134(move_uploaded_file allows nulls in path). (CVE-2015-2348)69207CVE-2015-2348(heap overflow vulnerability in regcomp.c). (CVE-2015-2305)69248CVE-2015-2305(SoapClient's __call() type confusion through unserialize()). (CVE-2015-4147, CVE-2015-4148)69085CVE-2015-4147(ZIP Integer Overflow leads to writing past heap boundary). (CVE-2015-2331)69253CVE-2015-2331