PHP 7.3 reached EOL on , and all releases of this version no longer receive security or bug fixes. Using PHP 7.3.29 is not recommended. PHP 7.3.33 is the latest version in the series.
Downloads
Source Code
Git Clone
Use Git to clone the 7.3.29 tag from the PHP Git repository.
git clone https://github.com/php/php-src.git --depth 1 --branch php-7.3.29How to compile PHP
PHP can be compiled by setting up the dependencies, building the configure script (
Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
./buildconf), configuring the build ./configure, and running make.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Non-Thread Safe Builds
Non-Thread Safe (NTS) builds are single-threaded PHP builds. They can be used on web servers that integrate PHP over FastCGI protocol, such as Nginx, Caddy, and IIS.
php-7.3.29-x64NTS.zip
Size: 24.44 MiB
php-7.3.29-x86NTS.zip
Size: 22.81 MiB
Thread-Safe Builds
Thread-Safe (TS) builds are multi-thread PHP builds, often used to integrate PHP as a Server API for multithreaded servers. The most common use case is using PHP as an Apache module.
php-7.3.29-x64TS.zip
Size: 24.57 MiB
php-7.3.29-x86TS.zip
Size: 22.88 MiB
Docker/Podman Containers
PHP CLI
PHP CLI Containers images only include the PHP CLI, and no FPM or Apache modules. The Alpine builds are lightweight, but may introduce incompatibilities due to their musl builds. Albeit their larger size, the Debian-based (without the "-alpine" suffix) images are more complete, and widely used.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.3.29-cli-alpineDebian-based: More compatible with other components, complete, and are widely used.
docker pull php:7.3.29-cliPHP CLI + Web Server Integration
These container images include PHP CLI, and a web server integration. FPM container images can be integrated with web servers such as Nginx, Caddy, and Apache with Event MPM. The Apache container images include Apache web server, integrating PHP as an Apache module.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:7.3.29-fpm-alpineDebian-based ZTS Apache: Includes Apache web server integrating PHP as an Apache module.
docker pull php:7.3.29-apacheDebian-based NTS FPM: PHP-FPM, can be integrated with Nginx, Caddy, and other web servers over Fast CGI.
docker pull php:7.3.29-fpmChangeLog
Core
- Fixed bug #81122: SSRF bypass in FILTER_VALIDATE_URL. (CVE-2021-21705)
PDO_Firebird
- Fixed bug #76448: Stack buffer overflow in firebird_info_cb. (CVE-2021-21704)
- Fixed bug #76449: SIGSEGV in firebird_handle_doer. (CVE-2021-21704)
- Fixed bug #76450: SIGSEGV in firebird_stmt_execute. (CVE-2021-21704)
- Fixed bug #76452: Crash while parsing blob data in firebird_fetch_blob. (CVE-2021-21704)
Commit List
Christoph M. Becker
- Add missing NEWS entry for #80710 in 60a68a45c3
- Fix ./makedist wrt. to GH move in 096f148c61
- 7.3.29 is next in 98c8ad9218
- Fix #81122: SSRF bypass in
FILTER_VALIDATE_URLin a5538c6229 - Fix #76452: Crash while parsing blob data in firebird_fetch_blob in 286162e9b0
- Fix #76450: SIGSEGV in firebird_stmt_execute in bcbf8aa0c9
- Fix #76449: SIGSEGV in firebird_handle_doer in 08da7c7372
- Fix #76448: Stack buffer overflow in firebird_info_cb in 67afa32541
- Prepare for 7.3.29 in 0960f2cdcf
Stanislav Malyshev
- Update NEWS in c68a687566