WordPress 3.1 RC2

WordPress 3.1 RC2 has been released! I am pretty sure by end of this week or latest next week, we will be able to see WordPress 3.1 out the door!

The second release candidate for WordPress 3.1 is now available. The requisite haiku:

Rounding up stragglers

Last few bugs for 3.1

Go test RC2

As I outlined in the announcement post for RC1, release candidates are the last stop before the final release. It means we think we’re done, and we again have no bugs to squash. But with tens of millions of users, many server configurations and setups, and thousands of plugins and themes, it’s still possible we’ve missed something.

Beta 1 came on Thanksgiving, RC1 on Christmas, and RC2 on New Year’s Day. We won’t be waiting for another holiday for the final release, though, so if you haven’t tested WordPress 3.1 yet, now is the time!

Select changes since RC1:

  • The security fixes included in WordPress 3.0.4
  • Fix issues related to handling a static front page
  • Fixes and enhancements for the pagination buttons
  • Fix searching for partial usernames
  • Properly reactivate plugins after editing them
  • Always show the current author in the author dropdown when editing a post
  • Fixes for attachment taxonomies
  • Fix node removal for the admin bar
  • Fix the custom post type show_in_menu argument
  • Various fixes for right-to-left languages
  • and a few dozen more changes

If you are testing the release candidate and think you’ve found a bug, there are a few ways to let us know:

Download: WordPress 3.1 RC2

1 Star2 Stars3 Stars4 Stars5 Stars (213 votes, average: 3.79 out of 5)

Confirmed WordPress 2.7 Features

Ryan Boren has posted a list of confirmed features that will appear in WordPress 2.7. Some of this features are still under development and they should be done soon.

  • New admin UI based on the crazyhorse experimental UI branch with new menus and navigation
  • New edit post page that allows dragging and dropping of meta boxes. Boxes can be expanded and collapsed as before and now also completely hidden.
  • Ability to hide columns on the content index pages
  • Inline editing of posts and pages on the content index pages
  • Comments XMLRPC API (Who wants comment moderation on the iPhone? Me.)
  • Reply to comments from the admin
  • Keyboard hot keys for managing comments
  • Threaded Comments and new wp_list_comments() API
  • Sticky Posts
  • Automatic plugin install and integrated plugin browser
  • Automatic upgrade of WordPress
  • HTTPOnly auth cookies
  • New HTTP request API
  • A new SSH2 filesystem abstraction for updates and installs over sftp

Theme update, install, and browsing may also get done in time for 2.7.

1 Star2 Stars3 Stars4 Stars5 Stars (146 votes, average: 3.79 out of 5)

WordPress 3.0.4

WordPress 3.0.4 has been released and it a critical update as it fixes an XSS vulnerability.

It is a very important update to apply to your sites as soon as possible because it fixes a core security bug in our HTML sanitation library, called KSES. I would rate this release as critical.
I realize an update during the holidays is no fun, but this one is worth putting down the eggnog for. In the spirit of the holidays, consider helping your friends as well.

If you are a security researcher, we’d appreciate you taking a look over this changeset as well to review our update. We’ve given it a lot of thought and review but since this is so core we want as many brains on it as possible. Thanks to Mauro Gentile and Jon Cave (duck_) who discovered and alerted us to these XSS vulnerabilities first.

Changelog: WordPress 3.0.4
Download: WordPress 3.0.4
Download: Modified files since WordPress 3.0.3

1 Star2 Stars3 Stars4 Stars5 Stars (140 votes, average: 3.79 out of 5)