PHP 7.2 reached EOL on , and all releases of this version no longer receive security or bug fixes. Using PHP 7.2.24 is not recommended. PHP 7.2.34 is the latest version in the series.
Downloads
Source Code
Git Clone
Use Git to clone the 7.2.24 tag from the PHP Git repository.
git clone https://github.com/php/php-src.git --depth 1 --branch php-7.2.24
How to compile PHP
PHP can be compiled by setting up the dependencies, building the configure script (
Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
./buildconf
), configuring the build ./configure
, and running make
.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Non-Thread Safe Builds
Non-Thread Safe (NTS) builds are single-threaded PHP builds. They can be used on web servers that integrate PHP over FastCGI protocol, such as Nginx, Caddy, and IIS.
php-7.2.24-x64NTS.zip (24.9 MiB)
php-7.2.24-x86NTS.zip (23.26 MiB)
Thread-Safe Builds
Thread-Safe (TS) builds are multi-thread PHP builds, often used to integrate PHP as a Server API for multithreaded servers. The most common use case is using PHP as an Apache module.
php-7.2.24-x64TS.zip (25.04 MiB)
php-7.2.24-x86TS.zip (23.34 MiB)
Docker/Podman Containers
PHP CLI
PHP CLI Containers images only include the PHP CLI, and no FPM or Apache modules. The Alpine builds are lightweight, but may introduce incompatibilities due to their musl builds. Albeit their larger size, the Debian-based (without the "-alpine" suffix) images are more complete, and widely used.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.2.24-cli-alpine
Debian-based: More compatible with other components, complete, and are widely used.
docker pull php:7.2.24-cli
PHP CLI + Web Server Integration
These container images include PHP CLI, and a web server integration. FPM container images can be integrated with web servers such as Nginx, Caddy, and Apache with Event MPM. The Apache container images include Apache web server, integrating PHP as an Apache module.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.2.24-fpm-alpine
Debian-based ZTS Apache: Includes Apache web server integrating PHP as an Apache module.
docker pull php:7.2.24-apache
Debian-based NTS FPM: PHP-FPM, can be integrated with Nginx, Caddy, and other web servers over Fast CGI.
docker pull php:7.2.24-fpm
ChangeLog
Core
- Fixed bug #78535 (auto_detect_line_endings value not parsed as bool).
- Fixed bug #78620 (Out of memory error).
Exif
- Fixed bug #78442 ('Illegal component' on exif_read_data since PHP7)
FPM
- Fixed bug #78599 (env_path_info underflow in
fpm_main.c
can lead to RCE). (CVE-2019-11043)
MBString
- Fixed bug #78579 (
mb_decode_numericentity
: args number inconsistency). - Fixed bug #78609 (
mb_check_encoding()
no longer supports stringable objects).
MySQLi
- Fixed bug #76809 (SSL settings aren't respected when persistent connections are used).
PDO_MySQL
- Fixed bug #78623 (Regression caused by "SP call yields additional empty result set").
Session
- Fixed bug #78624 (session_gc return value for user defined session handlers).
Standard
- Fixed bug #76342 (file_get_contents waits twice specified timeout).
- Fixed bug #78612 (strtr leaks memory when integer keys are used and the subject string shorter).
- Fixed bug #76859 (
stream_get_line
skips data if used with data-generating filter).
Zip
- Fixed bug #78641 (addGlob can modify given remove_path value).
Commit List
Brent Shaffer
- fix #78624: session_gc return value for user defined session handlers in a6d219630c
bugreportuser
- Fix #78535: auto_detect_line_endings value not parsed as bool in fdcca93056
Christoph M. Becker
- Stick with
zend_long
for ABI compatibility in 81cefab7b0 - Fix #78579:
mb_decode_numericentity
: args number inconsistency in 398b308316 - Fix test to be skipped if dom is not available in 697945aa89
- Fix NEWS entry in ed099ab186
- Fix
skipif
.inc in 115f6effec - Fix build for libzip < 0.11.2 in f6bfbe9553
- Fix #78609:
mb_check_encoding()
no longer supports stringable objects in 45db6fa567 - Fix #78620: Out of memory error in 8ce04df7e0
- Revert "Fix #78620: Out of memory error" in f2fb37a772
- Fix #78620: Out of memory error in abaf9a76dc
- Split intl tests for ICU 65 in 545412a6cd
- Fix #78623: Regression caused by "SP call yields additional empty result set" in 114c03b9a6
- Fix #78641: addGlob can modify given remove_path value in fd3118ffb0
CJDennis
- Fix typo in e3255a4f49
Dmitry Stogov
- Fixed test that "fails" from time to time in 2fcb5eadbb
- Fixed test that "fails" from time to time in 3124129ca8
Drakano
- Add tilde to allowed status/ping path in 252ebce0d7
Fabien Villepinte
- Fix
SKIPIF
inext/mysqli
in 37d27e666a - Add missing skip keyword in tests in 209e37db7d
fancyweb
- Fix #76342: file_get_contents waits twice specified timeout in e691a98c1f
Fábio Souto
- Fix bug #76809 (SSL settings aren't respected when persistent connection is reused) in 9a2b42a5c1
Jinesh Patel
- Fix length of key passed to
zend_hash_str_find_ptr
in 0d6c2448a7 - Fix hash key length in
umsg_parse_format()
in d2331cc3f2
Kalle Sommer Nielsen
- Fixed bug #78442 ('Illegal component' on exif_read_data since PHP7) in 2823e938d4
- NEWS in 716518373f
Konstantin Kopachev
- Fix #76859
stream_get_line
skips data if used with data-generating filter in 05560b67bc
Nikita Popov
- Fix leak in SplObjectStorage unserialization in 8873df8e86
- Fixed bug #78545 in 2f6efd835d
- Increase timeout in test in 175f4f24ae
- Fix exif leak on duplicate copyright tags in 3e139a4653
- Fix iterable return type optimization in 003c13d7bc
- Fix out-of-bounds read in exif tag reading in 0fa13028cb
- Fix multiple leaks in
exif_read_data()
in 0701835c01 - Fix leak of temporary buffer during exif tag reading in f989a4cd44
- Fix signed integer overflow in SplObjectStorage unserialization in 8509970e6a
- Skip test on 32-bit in bc4c4c658c
- Fix
skipif
condition in 3ddb63dce1 - Fix null-pointer deref in if stmt printing in 8a9df88597
- Fix memory leak with ** on array operands in ab938d7bbc
- Fixed bug #78612 in 6fcde56b03
- Fix segfault with COMPILER_HALT_OFFSET and trailing {} in a5d3620d93
- Set session.gc_probability=0 in
bug78624.phpt
in 7d19668f60 - Check for
object_init_ex()
failure in user filter factory in 19e6abebc7
Remi Collet
- Update CREDITS for PHP 7.2.24RC1 in fe947d245b
- add NEWS entry for CVE-2019-11043 in 92de579a00
- Update versions for PHP 7.2.24 in d41dd0b518
Sara Golemon
- Bump for 7.2.24 in a270eb1911
Tyson Andre
- Fix opcache return type for get_headers in
zend_func_info
in 29bced9521