Wordpress 2.0.5 Released, Xpression Updated
An update for Wordpress, the backbone of this entire site, has just been released. The new version, 2.0.5, is simply a security update which is always good for people, like me, who tend to have a lot of angry people looking to mess up their site as often as possible. Here’s an unofficial list of changes:
* is_feed() status is preserved when handling 404s #3019 [4227]
* manually entering pages greater than the number of pages for a given post now shows the highest numbered page #3039 [4228]
* improved security in wp-db-backup plugin [4226]
* user description is no longer HTML-entity converted going into the database #3069 [4230]
* fix for rel=”nofollow nofollow” repetition #2995 [4233]
* plugins are sorted by plugin name, instead of filename #2412 [4323] [4324]
* multi-line options in /wp-admin/options.php are preserved #2456 [4331]
* the authors dropdown is now sorted by display_name #2370 [4365]
* the_meta() properly ignores keys that start with an underscore #2478 [4368]
* post meta keys and data are escaped properly on the post screen [4376]
* users are prevented from entering strings that will be interpreted as serialized data when coming out of the database #2591 [4384] [4395]
* make_clickable() no longer adds links within links #3228 [4385] [4387]
* error suppression #2331 [4341], #2745 [4328], #1999 [4315], #2759 [4287], #3179 [4280]
* i18n fixes #3109 [4239]
Be safe and update people. And yes, for those of you wondering, I’m already up to date and running 2.0.5 here.
Filed under: General
Thanks for spreading the word about the update. With the number of people still running older releases, and the major security holes that continue to be closed in each 2.0.x release, it is very important to get everyone off of the older versions. The two biggest reasons to upgrade to 2.0.5, as I see it, are:
1. This is, again, major security release. There was a major hole plugged;
2. If you started your blog with version 2.0 or newer, you’re missing a DB index on the post table and that will slow down your site.
I’ve provided more detail in a top 5 list on my own site, but you can always look at the official list of all 60 tickets addressed. I use this link to look at it in order of priority.
Please continue to convince your friends and everyone on your blog roll to upgrade, it is important. If any of them are worried about upgrading, I’ve included a 35 second upgrade script on my site. It’s been reviewed by the members of the WP-Hackers list. So, it is safe. I’d post the link here, but I’m releasing an updated version of it later today and don’t want the old links floating around. Just look at the Code Cave article link I posted above and follow it from there. 35 seconds for multiple blogs beats 20 minutes to do it by hand.