doctrine/phpcr-odm is vulnerable to privilege escalation and arbitrary code execution. The vulnerability exists due to incorrect writable permissions in cache directories, allowing local attackers to escalate privileges and/or execute arbitrary code.
framework.zend.com/security/advisory/ZF2015-07
www.debian.org/security/2015/dsa-3369
www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.html
bugzilla.redhat.com/show_bug.cgi?id=1347924
framework.zend.com/security/advisory/ZF2015-07
lists.fedoraproject.org/archives/list/[email protected]/message/2IUUC7HPN4XE5NNTG4MR76OC662XRZUO/
lists.fedoraproject.org/archives/list/[email protected]/message/HPS7A54FQ2CR6PH4NDR6UIYJIRNFXW67/
www.debian.org/security/2015/dsa-3369