Branches end-of-life

  • Hi,

    I’m literally going crazy trying to find any clue about which branches of WordPress are considered end of life.

    If you go to Joomla site, it’s clear : only the last version is supported. Drupal is still supporting 7.x until release of 9.x, but what about WordPress when I see that 4.0 still got a fix in February ?

    I need to know to be able to inform clients of the potential security risks of their website, but it’s really hard to find something relevant about this.

    Does anyone know “the truth” ?

    Regards,
    Seb

Viewing 7 replies - 1 through 7 (of 7 total)

  • I am also interested to know.

    But at least end of life with WordPress does not mean as on Drupal “you are fuxxed and need to completely start a new website from scratch with the next version”.

    It seems to be a good reason to stick with worpdress.

    Andrew Nevins

    (@anevins)

    WCLDN 2018 Contributor | Volunteer support

    Was it a background update?

    When a security update is pushed for the current stable release of WordPress, the core team will also push security updates for all the releases that are capable of background updates (since WordPress 3.7), so these older but still recent versions of WordPress will receive security enhancements.

    https://www.ads-software.com/about/security/

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    I need to know to be able to inform clients of the potential security risks of their website, but it’s really hard to find something relevant about this.

    The only version of WordPress that is guaranteed to receive patches is always the current version. At the moment that’s 4.4.2 with 4.5 expected to be release soon.

    Yes, when possible the patches will be applied to the older versions. That does happen back to 3.7 but you really cannot count on that. There may come a time when a patch simply can’t be back ported.

    Part of your security discussion with your clients needs to be about product life cycle and that does include version upgrades.

    Yes, WordPress is really better than drupal for updates and upgrades.

    @seboss666, @jdembowski I was wondering the same thing and after this thread was the only thing I could find about it I started digging. Apparently every version after 3.7 is getting security patches:

    When a security update is pushed for the current stable release of WordPress, the core team will also push security updates for all the releases that are capable of background updates (since WordPress 3.7), so these older but still recent versions of WordPress will receive security enhancements.

    https://www.ads-software.com/about/security/

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    That is true for security enchancementsbut there’s a caveat: eventually old versions do become too old to support or back port patches to.

    There may come a time when 3.7 is too old to backport a security patch because too much will have changed in the code base.

    There may come a time

    While true I simply couldn’t find anything official supporting this … yet.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Branches end-of-life’ is closed to new replies.