Dougal Campbell's geek ramblings

WordPress, web development, and world domination.

WordPress 2.6.2 Release

As most of you have probably already seen in your Dashboard, yesterday afternoon saw the official WordPress 2.6.2 Release. And as mentioned in the comments on my intitial news break on the 2.6.2 Beta, the focus is on two security patches to cover weaknesses in PHP’s random number generation (which affects password encryption strength), and in MySQL’s field length checking. These weren’t (technically) security bugs in WordPress, per se, but in the underlying PHP/MySQL stack. Fortunately, we’re able to route around them. This is mainly a problem if your site allows users to register for a user login, however, I would still recommend this upgrade for all users, just to be on the safe side.

For those of you who are PHP/MySQL developers yourselves, I highly recommend reading Stefan Esser’s explanation of the PHP mt_srand() bug and the MySQL SQL Column Truncation issue. He provides some really good detail of the problems. Stefan is also the developer of the PHP Suhosin module, which provides extra security-related features and protections to PHP.

It’s also important to note that these problems don’t just affect WordPress — many other PHP/MySQL applications could be vulnerable to future problems if they don’t examine and patch their code.

About Dougal Campbell

Dougal is a web developer, and a "Developer Emeritus" for the WordPress platform. When he's not coding PHP, Perl, CSS, JavaScript, or whatnot, he spends time with his wife, three children, a dog, and a cat in their Atlanta area home.
This entry was posted in Announcements, Community, WordPress and tagged , , , , , , , , , , . Bookmark the permalink.

8 Responses to WordPress 2.6.2 Release

  1. Pingback: Wordpress 2.6.2 Upgrade | Prasys' Blog

  2. Jonathan says:

    Hey, did someone change up the post editor? It seems like its missing a whole bunch of stuff now that I’ve upgraded. For instance – where is my add link button gone? I’ve got these nice drop down menus for some things like font size etc, but no linky linky!!!!

  3. farshad says:

    Hey, did someone change up the post editor?

  4. Riman says:

    I try this version and it’s nice 🙂

  5. Sowin says:

    I still wait for better wersion but this is almost great 🙂

  6. Kazir says:

    WordPress is my love 🙂 it’s great cms – I always wait for new version

  7. MikeMech says:

    You’re quite faster then my Drupal security news 🙂
    Think it’s about time to switch some of my Drupal sites back to WordPress now…

  8. Flug says:

    The new version is great. Not only the security updates, that like we all know have been more than neccessary, but especially the design options are great.

Leave a Reply

%d bloggers like this: