We’ve got a new bugfix and security release for both of our actively maintained branches of WordPress. Version 2.1.1 includes about 30 bug fixes, mostly minor things around encoding, XML-RPC, the object cache, and HTML code. It’s available for immediate download on our download page.
Version 2.0.9 only includes the security update, which was around the code we use to prevent XSS. You can download it from our release archive. As a reminder, we’ve committed to proving security updates to 2.0 through 2010, but all new features and development are going into the newer branch, which is at this time 2.1.
This is a low-to-medium priority update recommended for all WordPress users. After the break is a list of changed files.
Files changed in 2.1.1 from 2.1:
- wp-includes/post-template.php
- wp-includes/cache.php
- wp-includes/formatting.php
- wp-includes/category.php
- wp-includes/post.php
- wp-includes/version.php
- wp-includes/js/scriptaculous/wp-scriptaculous.js
- wp-includes/js/tinymce/tiny_mce_config.php
- wp-includes/js/tinymce/wp-mce-help.php
- wp-includes/js/tinymce/tiny_mce_gzip.php
- wp-includes/capabilities.php
- wp-includes/cron.php
- wp-includes/functions.php
- wp-includes/bookmark-template.php
- xmlrpc.php
- wp-admin/admin-ajax.php
- wp-admin/admin-functions.php
- wp-admin/custom-header.php
- wp-admin/options-general.php
- wp-admin/edit.php
- wp-admin/index-extra.php
- wp-admin/options-reading.php
Files changed from 2.0.7 to 2.0.9 (version 2.0.8 was tagged for Debian, but never announced):
- wp-includes/cache.php
- wp-includes/wp-db.php
- wp-includes/version.php
- wp-includes/js/tinymce/wp-mce-help.php
- wp-includes/js/tinymce/tiny_mce_gzip.php
- wp-includes/classes.php
- wp-includes/functions.php
- wp-includes/rss-functions.php
- readme.html
- wp-admin/edit-form-advanced.php
- wp-admin/link-import.php
- wp-admin/link-categories.php
- wp-admin/user-edit.php
- wp-admin/options-permalink.php