So we have some new security releases for WordPress out. I wondered how quickly new releases for 2.1 and 2.0 would be handled as Automattic quickly moves towards WordPress 2.2, which comes out later this spring.
They list some details on their development blog:
We’ve got a new bugfix and security release for both of our actively maintained branches of WordPress. Version 2.1.1 includes about 30 bug fixes, mostly minor things around encoding, XML-RPC, the object cache, and HTML code. It’s available for immediate download on our download page.
Version 2.0.9 only includes the security update, which was around the code we use to prevent XSS. You can download it from our release archive. As a reminder, we’ve committed to proving security updates to 2.0 through 2010, but all new features and development are going into the newer branch, which is at this time 2.1.
This is a low-to-medium priority update recommended for all WordPress users.
It is nice to see that they are staying true to their promise of supporting the old WordPress 2.0.x branch, and I hope they continue to make the new releases public.
I am kicking myself in the butt though, as I knew about this release yesterday before it was announced thanks to Abe and his Yugatech blog.