Versions of PHP prior to 5.2.14, or 5.3.x prior to 5.3.3 are affected by the following vulnerabilities :
Binary data 5616.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0397
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1860
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1862
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1864
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1868
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2097
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2100
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2101
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2190
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2191
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2225
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2484
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2531
seclists.org/fulldisclosure/2011/Oct/483
www.php.net/ChangeLog-5.php#5.2.14
www.php.net/ChangeLog-5.php#5.3.3
www.php.net/releases/5_2_14.php
www.php.net/releases/5_3_3.php