The PHP development team would like to announce the immediate availability of PHP 5.3.13. This release delivers a security fix. All users of PHP 5.3 are encouraged to upgrade to this release
PHP 5.3.13 completes a fix for a vulnerability in CGI-based setups (CVE-2012-2311). Note: mod_php and php-fpm are not vulnerable to this attack.
For source downloads of PHP 5.3.13 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.