PHP 7.3 reached EOL on , and all releases of this version no longer receive security or bug fixes. Using PHP 7.3.9 is not recommended. PHP 7.3.33 is the latest version in the series.
Downloads
Source Code
git clone https://github.com/php/php-src.git --depth 1 --branch php-7.3.9
./buildconf
), configuring the build ./configure
, and running make
.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Docker/Podman Containers
docker pull php:7.3.9-cli-alpine
docker pull php:7.3.9-cli
docker pull php:7.3.9-fpm-alpine
docker pull php:7.3.9-apache
docker pull php:7.3.9-fpm
ChangeLog
Core
- Fixed bug #78363 (Buffer overflow in zendparse).
- Fixed bug #78379 (Cast to object confuses GC, causes crash).
- Fixed bug #78412 (Generator incorrectly reports non-releasable $this as GC child).
Curl
- Fixed bug #77946 (Bad cURL resources returned by
curl_multi_info_read()
).
Exif
- Fixed bug #78333 (Exif crash (bus error) due to wrong alignment and invalid cast).
FPM
- Fixed bug #77185 (Use-after-free in FPM master event handling).
Iconv
- Fixed bug #78342 (Bus error in configure test for iconv //IGNORE).
LiteSpeed
- Updated to LiteSpeed SAPI V7.5 (Fixed clean shutdown).
MBString
- Fixed bug #78380 (Oniguruma 6.9.3 fixes CVEs). (CVE-2019-13224)
MySQLnd
- Fixed bug #78179 (MariaDB server version incorrectly detected).
- Fixed bug #78213 (Empty row pocket).
Opcache
- Fixed bug #77191 (Assertion failure in
dce_live_ranges()
when silencing is used).
Standard
- Fixed bug #69100 (Bus error from
stream_copy_to_stream
(file -> SSL stream) with invalid length). - Fixed bug #78282 (atime and mtime mismatch).
- Fixed bug #78326 (improper memory deallocation on
stream_get_contents()
with fixed length buffer). - Fixed bug #78346 (strip_tags no longer handling nested php tags).
Commit List
Abyr Valg
- Fixed bug #77946 in c8c183eb62
Albert Casademont
- Fix bug #78326 in dc7aa22b18
Christoph M. Becker
- Fix #78342: Bus error in configure test for iconv //IGNORE in 30eb4b3563
- Fix #77919: Potential UAF in Phar RSHUTDOWN in cd1101e8c8
- Fix #78338: Array cross-border reading in PCRE in 8947fd9e9f
- Fix 78213: Empty row pocket in 8af14024c2
- Remove
upgrade-pcre.php
script in b419b24ead - Fix #78179: MariaDB server version incorrectly detected in f9f4a68368
- Fix #78346: strip_tags no longer handling nested php tags in a87ef5e3dd
- Fix #78282: atime and mtime mismatch in 954543cec6
- Bump version numbers in fe7997912d
- Prepare 7.3.9RC1 in 2c0381f330
- Update
credits_ext.h
in 8dc9e843a1 - Prepare PHP 7.3.9 in 89dc78e0f0
Derick Rethans
- Updated to version 2019.2 (2019b) in 7aa1dd3ba1
Dmitry Stogov
- Fixed bug #78379 (Cast to object confuses GC, causes crash) in 358379be22
- Added asserts to catch GC errors when refcount goes below zero in 2e2cd65d73
- Fixed second part of the bug #78379 (Cast to object confuses GC, causes crash) in 6b1cc1252e
- Fixed handling of references in nested data of objects with destructor in 9b43e29d9b
George Peter Banyard
- Convert short tag to standard tag in Zend test file in e7e66d5275
George Wang
- Checked in LiteSpeed SAPI 7.5, addressed two main problems in "clean shutdown" introduced in 7.4.3, in eb7e45f662
Levi Morrison
- Remove .post files only for passing tests in 5649267b25
Maksim Nikulin
- Prevent use after free in fpm_event_epoll_wait in bdf24f8d6d
Matteo Beccati
- Skip test when SIGKILL is not defined in 796efd849e
Nikita Popov
- Fixed bug #78297 in 8a19fe29de
- Fixed bug #69100 in b864abfe23
- Reduce number of workers in test in 5e4dbce586
- Remove test for bug #77185 in b59a9381b9
- Fixed bug #78333 in d142dfc93d
- Fixed bug #78333 in 68fd435ba8
- Fixed bug #78341 in 8e63bb5e46
- Fix Zend signals unblocking in 38f1288b64
- Fixed bug #78363 in 85e8ccd55e
- Add test for bug #78363 in d89157cd67
- Fix GC tracing in 38f10ff5cf
- Intern alias old_name early in f3fdf570b3
- Don't destroy properties array with unset GC type in 18f2918a0f
- Fixed bug #77191 in 4eeb41d1ea
- Fixed bug #78412 in c4cfab8f84
Peter Kokot
- Update NEWS in 8f384bea93
- Update NEWS in b42a13b08a
Remi Collet
- next is 7.2.22 in c9037421ac
Stanislav Malyshev
- Fix bug #78222 (heap-buffer-overflow on exif_scan_thumbnail) in dea2989ab8
- Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment) in aeb6d13185
- Update NEWS in 42e8b85d94
- Fix CVE-2019-13224: don't allow different encodings for
onig_new_deluxe()
in a3bc8443f3