PHP 8.4.0RC2 is an old release of PHP 8.4 series. Using the latest version PHP 8.4.3 is highly recommended.
PHP 8.4 continues to receive bug fixes and security fixes until 2026-12-31.
Downloads
Source Code
Git Clone
Use Git to clone the 8.4.0RC2 tag from the PHP Git repository.
git clone https://github.com/php/php-src.git --depth 1 --branch php-8.4.0RC2How to compile PHP
PHP can be compiled by setting up the dependencies, building the configure script (
Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
./buildconf), configuring the build ./configure, and running make.Detailed articles on how to compile PHP are available for Ubuntu/Debian based systems and Fedora/RHEL based systems.
Windows binaries
Non-Thread Safe Builds
Non-Thread Safe (NTS) builds are single-threaded PHP builds. They can be used on web servers that integrate PHP over FastCGI protocol, such as Nginx, Caddy, and IIS.
php-8.4.0RC2-x64NTS.zip (31.41 MiB)
php-8.4.0RC2-x86NTS.zip (28.23 MiB)
Thread-Safe Builds
Thread-Safe (TS) builds are multi-thread PHP builds, often used to integrate PHP as a Server API for multithreaded servers. The most common use case is using PHP as an Apache module.
php-8.4.0RC2-x64TS.zip (31.56 MiB)
php-8.4.0RC2-x86TS.zip (28.29 MiB)
Docker/Podman Containers
PHP CLI
PHP CLI Containers images only include the PHP CLI, and no FPM or Apache modules. The Alpine builds are lightweight, but may introduce incompatibilities due to their musl builds. Albeit their larger size, the Debian-based (without the "-alpine" suffix) images are more complete, and widely used.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:8.4.0RC2-cli-alpineDebian-based: More compatible with other components, complete, and are widely used.
docker pull php:8.4.0RC2-cliPHP CLI + Web Server Integration
These container images include PHP CLI, and a web server integration. FPM container images can be integrated with web servers such as Nginx, Caddy, and Apache with Event MPM. The Apache container images include Apache web server, integrating PHP as an Apache module.
Alpine-based: Lightweight, but may introduce incompatibilities due to their musl builds.
docker pull php:8.4.0RC2-fpm-alpineDebian-based ZTS Apache: Includes Apache web server integrating PHP as an Apache module.
docker pull php:8.4.0RC2-apacheDebian-based NTS FPM: PHP-FPM, can be integrated with Nginx, Caddy, and other web servers over Fast CGI.
docker pull php:8.4.0RC2-fpmCommit List
Arnaud Le Blanc
- Fix GHSA-9pqp-7h25-4f32 in d65a1e6f91
- Fix reuse of dtor fiber during shutdown in GH-16026
- Fix use-after-free during lazy object initialization in GH-16004
- Fix assertion failure in generator dtor in GH-16025
- Fix
array_merge_recursive():convert_to_array()may need separation in GH-16061 - Fix handling of undef property during foreach by ref on hooked class in 4d7fcea5da
- Do not null out obj->properties when resetting object in 52fec6958c
- Ensure to initialize lazy object in foreach in 3151117987
- Deny resetting an object as lazy during property iteration in c9dfb77446
- Support stack limit in phpdbg SAPI in 443aa29dbe
- Handle references properties of the Exception class in c2115a43e3
- NEWS for GH-16196 in df4db5c1b4
- NEWS for GH-16196 in a774704aaf
- NEWS for GH-16196 in befe404419
- Use original op_array when JIT compiling a Closure in 82f70dba7d
- NEWS for GH-16200 in 6f70cd3f04
Calvin Buckley
- Fix regression on platforms without
ZEND_CHECK_STACK_LIMITset (8.4) in GH-16285 - Update versions for PHP 8.4.0RC2 in 1f914f9084
Chris Brown
- Fix small typo in UPGRADING in GH-16141
Christoph M. Becker
- Fix
bug71610.phptin de51612ba5 - Fix GH-15905: Assertion failure for TRACK_VARS_SERVER in 87d59d7fdd
- Fix failing soap tests on Windows in 5f3e6e346c
- Fix potential parallel test conflicts in f5649556ea
- Fix nightly builds regarding libavif in 258088310a
- Fix GH-16181: phpdbg: exit in exception handler reports fatal error in f14e5cfaaa
- Declare
zend_call_stack_size_error()asZEND_APIin 6f7f32c330 - Update Windows CI to use php-sdk-2.3.0 in d9d82377cc
- Install 32bit Firebird server on x86 in c3434091de
- Fix PDO_Firebird tests for 32bit in 626dc50989
Daniel Scherzer
- Fix GH-16187: ReflectionClass::__toString() with packed properties hash table in 331da7e869
- Fix GH-16162: No
ReflectionProperty::IS_VIRTUALin 76e5d82eb2
David Carlier
- Fix ubsan build on freebsd regarding float in 5feb29ea03
- Fix GH-15937: stream timeout option overflow in 332b067c5e
- Fix GH-16189: underflow on preg_match/preg_match_all start_offset in f453d1ae2a
- Fix GH-16137: "Deduplicate" http headers values but Set-Cookie in 3d80d98a10
- Fix GH-16231 jdtounix overflow on argument value in f4d2dd038b
- Fix GH-16232: bitshift overflow on wbmp file content reading in 54973c9366
- Fix GH-16228 overflow on easter_days/easter_date year argument in a3ff092c12
- fix build warning for GH-16228 in 6d9903f3e6
- Fix GH-16260: overflow/underflow on imagerotate degrees argument in 2d05da2e94
- Fix GH-16258 overflow on jddayofweek argument in a5e8ac62d9
- Fix GH-16234 jewishtojd overflow on year argument in e3015de741
- Fix GH-16267 socket_strerror overflow on argument value in 8537aa687e
- Fix GH-16257 imagescale underflow on RGB channels in a2bdfeff4f
Dmitry Stogov
- Fix possible NULL dereference in 24d5912a30
- Fix FFI prototypes (these functions can't return NULL) in GH-16075
- Improve JIT TRACE coverage in GH-16171
- Update IR in 64214d286b
- Update IR in 3fcf8caca8
Gina Peter Banyard
ext/ldap: Fix GH-16032 (Various NULL pointer dereferencements inldap_modify_batch()) in f4c45ee376ext/ldap: Fix GH-16101 (Segfaults inphp_ldap_do_search()when LDAPs is not a list) in 19bba83715ext/ldap: Fix GH-16132 (Freeing pointer not allocated by ZMM) in c910e78c39ext/ldap: Fix GH-16136 (Memory leak inphp_ldap_do_modify()) in 21260318c6- NEWS entries for LDAP bug fixes in f8b925b617
Ilija Tovilo
- Fix nightly for 8.2 in 50d5e96edb
- Add missing CI services for 8.2 in b7ee484f2b
- Fix use-after-free of object released in hook in 12844f96e2
- Fix missing libavif-dev in asan nightly in 271b9e685e
- Switch asan build to Ubuntu 24.04 in 91c06790de
- Remove now unused llvm installation in asan build in 6f7ec6a747
- Fix failed assertion when promoting Serialize deprecation to exception in 15a0c3a9d4
- Reduce regex backtracking in
phpinfo.phptin c4c45da4b9 - Fix printing backtrace of fake generator frame in 706bcdbc1a
- Fix various hooked object iterator issues in d76ef13757
Jakub Zelenka
- Fix GHSA-865w-9rf3-2wh5: FPM: Logs from childrens may be altered in 4580b8b3e1
- Update NEWS with security fixes info in 8d87bc3e26
- Skip GHSA-9pqp-7h25-4f32 test on Windows in 4bcc7d5778
- Fix stub for openssl_csr_new in dce0d97640
- Fix GH-15395: php-fpm:
zend_mm_heapcorrupted with cgi-fcgi request in 5a47f27021 - Fix FPM tester params type in ee7e21020e
- Fix failing openssl_private_decrypt tests in 53cc92c85c
Luís Cobucci
- Reproduce unexpected MySQL warnings for binary values in 93c68caeb5
Matteo Beccati
- PDO_MYSQL: Properly quote binary strings in cba92beac3
Máté Kocsis
- Fix
property_exists()andunset()for XMLReader in GH-16079
Niels Dossche
- Fix GHSA-p99j-rfp4-xqvq in 4b9cd27ff5
- Fix GHSA-94p6-54jq-9mwp in c1c14c8a0f
- Fix GH-16009: Segmentation fault with frameless functions and undefined CVs in daba40c695
- Fix GH-16039: Segmentation fault (access null pointer) in ext/dom/parentnode/tree.c in 043b9e1f13
- Fix GH-16054: Segmentation fault when resizing hash table iterator list while adding in fdd6ba62bb
- Fix bogus fallthrough path in
firebird_handle_get_attribute(), again in b21d2ca93b - Fix GH-15168: stack overflow in
json_encode()in a551b99b2c - Fix typo in bf1021c1a8
- Fix GH-16149: Null pointer dereference in DOMElement->getAttributeNames() in 63e1ebe78d
- Fix GH-16151: Assertion failure in ext/dom/parentnode/tree.c in 066d18f2e8
- Fix GH-15169: stack overflow when var serialization in ext/standard/var in bd724bdf42
- Fix GH-16190: Using reflection to call Dom\Node::__construct causes assertion failure in 3be6ff66b8
- Fix bugs GH-16150 and GH-16152: intern document mismanagement in d4a4d2e7a9
- Fix GH-16184: UBSan address overflowed in ext/pcre/php_pcre.c in c4bb07552e
- Use standard error message for stack limit in
serialize()in 612a6ad0af - Fix GH-16237: Segmentation fault when cloning SoapServer in 809a58bc1b
- Fix edge-case in DOM parsing decoding in 1e949d189a
- Fix Soap leaking http_msg on error in a9dada29e7
- Add
SKIPIFfor ZendMM forobserver_fiber_functions_03.phptin fbb1001d84 - Fix GH-16256: Assertion failure in ext/soap/php_encoding.c:460 in 922b9d6798
- Fixed GH-16233: Observer segfault when calling user function in internal function via trampoline in e715dd0afb
- Fix GH-16259: Soap segfault when classmap instantiation fails in 71222f799d
- Fix GH-16261: Reference invariant broken in
mb_convert_variables()in bf70d9ba0d
Peter Kokot
- Fix GH-16199: GREP_HEADER() is broken in e915ed75ea
Remi Collet
- zip extension is 1.22.4 in a1cacec067
Saki Takamachi
- Added PHP-8.4 to push workflow in GH-16045
Tim Düsterhus
- reflection: Fix the return value of ReflectionFunction::{getNamespaceName,inNamespace}() for closures in GH-16129
Yuya Hamada
- Fix GH-16229: Address overflowed in
mb_send_mailwhen empty string in d840200cea