[HIGH] CVE-2017-16654: Intl bundle readers breaking out of paths

PKSA-rp6j-7m48-zr61 CVE-2017-16654 GHSA-c49r-8gj6-768r

Affected version: >=2.7.0,<2.7.38|>=2.8.0,<2.8.31|>=3.0.0,<3.1.0|>=3.1.0,<3.2.0|>=3.2.0,<3.2.14|>=3.3.0,<3.3.13

Reported by:
GitHub, FriendsOfPHP/security-advisories