Release Information
- Release Type
- Security Update
- Release Status
- EOL
- Branch Status
- Unsupported
PHP 7.2 reached EOL on , and all releases of this version no longer receive security or bug fixes. Using PHP 7.2.34 is not recommended.
Downloads
Source Code
git clone https://github.com/php/php-src.git --depth 1 --branch php-7.2.34
./buildconf
), configuring the build ./configure
, and running make
.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Docker/Podman Containers
docker pull php:7.2.34-cli-alpine
docker pull php:7.2.34-cli
docker pull php:7.2.34-fpm-alpine
docker pull php:7.2.34-apache
docker pull php:7.2.34-fpm
ChangeLog
Core
- Fixed bug #79699 (PHP parses encoded cookie names so malicious
__Host-
cookies can be sent). (CVE-2020-7070)
OpenSSL
- Fixed bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV). (CVE-2020-7069)
Commit List
Remi Collet
- bump version to 7.2.34-dev in 6b8ffdbdeb
- Update versions for PHP 7.2.34 in 05eb475499
Stanislav Malyshev
- Fix bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV) in 0216630ea2
- Do not decode cookie names anymore in 6559fe9126
- Update NEWS & UPGRADING in 7bc112a142