PHP 7.2 reached EOL on , and all releases of this version no longer receive security or bug fixes. Using PHP 7.2.25 is not recommended. PHP 7.2.34 is the latest version in the series.
Downloads
Source Code
Git Clone
Use Git to clone the 7.2.25 tag from the PHP Git repository.
git clone https://github.com/php/php-src.git --depth 1 --branch php-7.2.25
How to compile PHP
PHP can be compiled by setting up the dependencies, building the configure script (
Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
./buildconf
), configuring the build ./configure
, and running make
.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Non-Thread Safe Builds
Non-Thread Safe (NTS) builds are single-threaded PHP builds. They can be used on web servers that integrate PHP over FastCGI protocol, such as Nginx, Caddy, and IIS.
php-7.2.25-x64NTS.zip (24.9 MiB)
php-7.2.25-x86NTS.zip (23.26 MiB)
Thread-Safe Builds
Thread-Safe (TS) builds are multi-thread PHP builds, often used to integrate PHP as a Server API for multithreaded servers. The most common use case is using PHP as an Apache module.
php-7.2.25-x64TS.zip (25.04 MiB)
php-7.2.25-x86TS.zip (23.34 MiB)
Docker/Podman Containers
PHP CLI
PHP CLI Containers images only include the PHP CLI, and no FPM or Apache modules. The Alpine builds are lightweight, but may introduce incompatibilities due to their musl builds. Albeit their larger size, the Debian-based (without the "-alpine" suffix) images are more complete, and widely used.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.2.25-cli-alpine
Debian-based: More compatible with other components, complete, and are widely used.
docker pull php:7.2.25-cli
PHP CLI + Web Server Integration
These container images include PHP CLI, and a web server integration. FPM container images can be integrated with web servers such as Nginx, Caddy, and Apache with Event MPM. The Apache container images include Apache web server, integrating PHP as an Apache module.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.2.25-fpm-alpine
Debian-based ZTS Apache: Includes Apache web server integrating PHP as an Apache module.
docker pull php:7.2.25-apache
Debian-based NTS FPM: PHP-FPM, can be integrated with Nginx, Caddy, and other web servers over Fast CGI.
docker pull php:7.2.25-fpm
ChangeLog
Core
- Fixed bug #78656 (Parse errors classified as highest log-level).
- Fixed bug #78752 (Segfault if GC triggered while generator stack frame is being destroyed).
- Fixed bug #78689 (
Closure::fromCallable()
doesn't handle [Closure, '__invoke']).
COM
- Fixed bug #78694 (Appending to a variant array causes segfault).
Date
- Fixed bug #70153 (\DateInterval incorrectly unserialized).
- Fixed bug #78751 (Serialising DatePeriod converts DateTimeImmutable).
Iconv
- Fixed bug #78642 (Wrong libiconv version displayed).
OpCache
- Fixed bug #78654 (Incorrectly computed opcache checksum on files with non-ascii characters).
- Fixed bug #78747 (OpCache corrupts custom extension result).
OpenSSL
- Fixed bug #78775 (TLS issues from HTTP request affecting other encrypted connections).
Reflection
- Fixed bug #78697 (ReflectionClass::ImplementsInterface - inaccurate error message with traits).
Sockets
- Fixed bug #78665 (Multicasting may leak memory).
Commit List
Christoph M. Becker
- Fix #78642: Wrong libiconv version displayed in 195c2008e8
- Fix #78665: Multicasting may leak memory in 900bdcbd03
- Fix #78694: Appending to a variant array causes segfault in 45a7723267
- Fix #78751: Serialising DatePeriod converts DateTimeImmutable in 89c327f884
- Fix test cases for libxml2 2.9.10 in e29922f054
Erik Lundin
- Fix #78656: Parse errors classified as highest log-level in 3164186d53
Fabien Villepinte
- Add missing SKIPIFs in exif tests in 46894580b0
- Fix bug #78697: inaccurate error message in bea2ff88c9
Jakub Zelenka
- Fix bug #78599 (env_path_info underflow can lead to RCE) (CVE-2019-11043) in ab061f95ca
Joe Watkins
- set versions for release in 481520d381
- bump versions after release in fadd7f0f1e
- set versions for release in 326cd05dae
- bump version in 52f049879a
m.yakunin
- Fix #70153 \DateInterval incorrectly unserialized in d2cde0bfd3
Mitch Hagstrand
- Fix checksum calculation for opcache in e2a6bf482f
Nikita Popov
- Remove redundant components < 0 check in d6ca174d5b
- Avoid float to int cast UB in exif in daf1fc6e31
- Fix leak on static method call on non-existent class in 96c84b7bc1
- Fix leak in phar open in 46561dab6a
- Add "-pthread" to EXTRA_LDFLAGS_PROGRAM as well in fa89c41f37
- Fixed bug #78747 in 5249993814
- Fix bug #78752 in 16c4910876
- Fixed bug #78689 in f9895b4bf5
- Add missing refcount increment in 5f6eaf355c
- Fixed bug #78775 in 4f984a2fdb
Remi Collet
- next is 7.2.25 in 05d6878b3b
- add NEWS entry in 2213bd36fd
Ryan Schmidt
- Use ICU's CXXFLAGS when using pkg-config in 8daf96cef3
Sara Golemon
- Update CREDITS for PHP 7.2.25RC1 in ca9842a0da
- Correct release date for 7.2.25 in d95fdd0394
- Update versions for PHP 7.2.25 in 85c7924c25
Sergei Turchanov
- Add
pcre_get_compiled_regex_cache_ex()
with local_aware flag in a8f60ac9dd
Stanislav Malyshev
- Fix libmagic buffer overflow issue (CVE-2019-18218) in 469820048d