It was reported that incorrect permissions masks when creating a new directory or file can lead to local arbitrary code execution or privilege escalation.
This issue has been fixed in upstream versions 1.12.16 and 2.4.8.
Created php-ZendFramework2 tracking bugs for this issue:
Affects: epel-6 [bug 1269079]
Created php-ZendFramework tracking bugs for this issue:
Affects: epel-all [bug 1269080]
Affects: fedora-all [bug 1269081]
php-ZendFramework2-2.2.10-2.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
All dependent bugs closed