ghacks Technology News

Wordpress 2.8.5 Security Update


wordpressThe Wordpress developers have released version 2.8.5 of their popular blogging software. The version is considered a security upgrade and therefor mandatory for all Wordpress blog owners who run their own Wordpress blog (but not those running a blog at Wordpress.com). The developers are calling this released a hardening release as it tightens Wordpress security to make Wordpress blogs more secure than before. The release is also fixing a Trackback denial of service attack that is currently in the wild.

The most important changes in Wordpress 2.8.5 are therefor:

  • A fix for the Trackback Denial-of-Service attack that is currently being seen.
  • Removal of areas within the code where php code in variables was evaluated.
  • Switched the file upload functionality to be whitelisted for all users including Admins.
  • Retiring of the two importers of Tag data from old plugins.

Wordpress blogs are currently not announcing the new release. It is expected that this will change in the next hours so that the automatic update option becomes available for Wordpress webmasters who use it to update their website. Webmasters who manually update their blog can visit the Wordpress page to download the latest version of Wordpress. Additional information about the security release are available in the blog post that announced the upgrade.




Tags: , , ,
Categories: The Web

Previous Post: Panda Internet Security 2010 [free]

Next Post: Xkcd Comic Wallpaper Changer

Read Related Posts

  1. Wordpress 2.8.6 Security Update Wordpress 2.8.6 Security Update
  2. Wordpress 2.6.5 Security Update Wordpress 2.6.5 Security Update
  3. Wordpress 2.7.1 Update Wordpress 2.7.1 Update
  4. Don’t upgrade to Wordpress 2.3 yet Don’t upgrade to Wordpress 2.3 yet
  5. Wordpress 2.8.2 Security Patch Wordpress 2.8.2 Security Patch
  6. Wordpress 2.3.3 Security Release Wordpress 2.3.3 Security Release
  7. Wordpress 2.8.3 Wordpress 2.8.3
  8. Wordpress 2.8.4 Security Update Wordpress 2.8.4 Security Update

4 Responses to “Wordpress 2.8.5 Security Update”

  1. V.C says:
    October 21, 2009 at 10:55 pm

    I don’t understand why they released the new version so quickly after the last update 2 months ago.
    I don’t see any changing in this new version. It’s not really necessary to upgrade.

    Reply
  2. Harsh Agrawal says:
    October 22, 2009 at 1:16 pm

    Saw this update Yesterday and the first thing which I did
    was Backup my Db and updated the wordpress. Though wordpress are releasing very quick update.. :|

    Reply
  3. Himanshu says:
    October 22, 2009 at 7:14 pm

    This is a nice release from Wordpress. DDOS attack via trackback relief is nice.I am eagerly waiting for the new version Wordpress 2.9. It will be interesting to see
    what will come out from the Wordpress box to its users.

    Reply

Trackbacks/Pingbacks

  1. Tech, Web, How to, Internet, Computer, Free Software, Tips, Make Money Online with AhTim says:
    November 3, 2009 at 10:27 am

    Upgrade To WordPress 2.8.5 Hardening Release…

    var fbShare = {url: ”, title: ”} As you know WordPress 2.9 is on the way out end of this month. But I can’t wait anymore to upgrade WordPress to version 2.8.5. Not the version has great features, but to resolve some blog’s errors.
    Let…

    Reply

Leave a Reply   Follow Ghacks   Subscribe To Comment Rss

Recent Posts

Popular Articles

Software Updates

by Appnews

Topics

Links

Popular Tags

Follow This Blog

Ghacks Full Feed Twitter  All Feeds

Information

About Ghacks

Ghacks is a technology blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular technology sites on the Internet with five authors and regular contributions from freelance writers.

 

Authors

Joe Anderson
Martin Brinkmann (Senior Editor)
Cheryl Correa
Orrett Morgan
Daniel Pataki
David Pierce
Jack Wallen

© 2005-2009 Ghacks.net. All Rights Reserved. Privacy Policy - About Us