WordPress 2.2.2 and 2.0.11 Security Update

For those who never read their WordPress dashboard, the makers of our favorite blogging software has released a security update.

Today we have two security-related releases available for both users of our main 2.2 branch and the legacy 2.0 branch. As these releases include only security and minor bugfixes they should not cause any plugin or theme compatibility issues, so you have no good excuse not to upgrade.

Now would be a good chance to test out that automatic WordPress updater. If you do use the auto update plugin, let me know how it worked for you. As for me, I did it the old fashion way. Since this is just a security update, all I did was upload and replaced the files. I didn’t even need to update the database.


45 thoughts on “WordPress 2.2.2 and 2.0.11 Security Update”

  1. Becky says:

    Hi John,

    I updated all my blogs on wordpress version from 2.2 to 2.2.2 today and there wasn’t any MYSQL changes performed. So maybe that is what happened. Thanks for the tip about that that plugin though !

    Becks 😛

    1. SELaplana says:

      i update my WordPress installation manually and after that…. seems no changes at all

  2. John Cow says:

    Update schmupdate. It’s running fine as it is, we’ll wait to see other blogs updates and if they don’t break, we’ll join in.

    1. John Chow says:

      The update went without any issues for me. Very easy. Just upload and replace.

  3. I would definately update, but I use Blogger, a bit easier to use and I dont pay for hosting :roll:

    1. Glen Allsopp says:

      You do save money but theres only so far you can go with the platform IMO

      I hate the way they do their comments

      1. dcr says:

        Yes, there comments’ system is a little awkward and cumbersome.

        Why would you want your readers to go through the extra hurdles to leave a comment?

        1. Yep, and I never usually bother leaving comments on blogger blogs… It’s just horrible. And that’s not to say I haven’t tried to, either. I usually give up.

          Also I live in Taiwan, so Blogger’s interface shows up in Chinese. I have to log in and change the language option before I do the comments…

          Really way too much trouble.

          Kenneth

        2. Wahlau.NET says:

          yup…i don’t like commenting in blogspot too…

    2. yeah, cause hosting is soo pricey :roll:

      1. dcr says:

        Plus, you can always move to a new host if they raise prices, if you outgrow them, if they decline in the quality of their service, if you find a better deal elsewhere, etc.

        And, you can always switch to a different CMS if something better (or more to your liking) than WordPress comes along.

        When you use one of the big name services, you’re pretty much stuck with whatever software, service and servers they have.

      2. Glen Allsopp says:

        hehe, theres no doubt that a blog can still be a success if hosted elsewhere (take lorelle for e.g.) but it certainly makes the branding side that much harder

        1. well if you use your own domain for branding etc then it’s not as bad but all the comment issues and things like that still apply. I just don’t see any reason not to host your blog yourself.

      3. Wahlau.NET says:

        maybe you can start with this

        http://www.wahlau.net/2007/08/01/usd10year-hosting-with-2-free-domain/

        hosting for 10usd/year (first year only) with 2 free domain.

        It is very cheap to start….

  4. I just updated, it’s best to do this asap as this update fixes a XSS exploit.

  5. yep took me less than 5 minutes. I did it the same way John did. never knew you use wordpress john, didn’t notice the powered by wordpress tag on your footer.

    1. dcr says:

      Took me longer than 5 minutes. Actually, all the prep work is what took so long. The last upgrade was before my blogs were really up and running, so I just deleted nearly everything and reinstalled, without worrying about doing a backup or anything.

      But, this time, I made sure I had a backup of the database, as well as all the WordPress files and everything I’ve modified.

      Then, I read and re-read the directions to make sure I was doing everything right. Then double-checked as I did things to make sure I didn’t miss anything.

      The actual upgrade process took less than 5 minutes though. Aside from the prep time, this was a pretty painless upgrade, probably because I was running WP 2.2.1, so there probably wasn’t a major change from 2.2.1 to 2.2.2 in terms of having to upgrade or modify the database or anything else.

      So far, I’ve not noticed any problems since the upgrade, which hopefully means I didn’t accidentally delete or “upgrade” something I shouldn’t have!

  6. dcr says:

    Thanks for bringing this up. My eyes just glaze over the WordPress dashboard “news.” Usually it’s just full of ads for t-shirts and stuff. It’d be nice if they’d highlight the important stuff.

  7. Good looking out. The automatic WordPress updater was great.

    1. I think I’m gonna wait for it to handle a more involved update before I let it update my blogs for me.

      1. John Chow says:

        You shouldn’t wait. 2.2.1 has a security problem that 2.2.2 fixes.

        1. Sorry, I meant I was going to wait to let the auto update plugin handle my updates, not that I’d wait to do the update.

  8. Thanks for the heads up! *=)

  9. Nik Agarwal says:

    i used the automatic update plugin. everything went smoothly, but it got stuck on the last step, which was to reactive all of my plugins. Other than that, it was a pretty smooth update.

    1. NSpeaks says:

      Same here, it didn’t reactivate the plugins. Other than that, the plugin seemed wonderful in updating my WordPress to 2.2.2.

  10. I ran into a few jitters but other then that, it worked great! ;D

  11. Alex78 says:

    Yep, thanks for keeping us up-to-date. Actually update went smoothly and everything’s working fine.

  12. Glen Allsopp says:

    has anyone else found that their images are no longer uploading?

    1. dcr says:

      I just did a test, and it works for me.

  13. Budget Babe says:

    I actually installed WordPress on Saturday so I hope that included the security update. I better check. Thanks for the heads up.

  14. Johnny says:

    I am on blogger as well, I read the complaints about it so someone please point me to the wordpress advantages.Am I missing out on something?

    1. dcr says:

      Comments are a lot easier, and there is some flexibility to them as well, in that the blogmaster can set it up in at least a couple different ways.

      I don’t know what options Blogger may offer, but every Blogger blog I’ve seen makes it an obstacle course to leave a comment. Maybe not a big deal to some people, but definitely an extra step or two than what you would need to do on a WordPress blog.

      I don’t know whether Blogger offers different options for the blogmaster or not, but everyone that I’ve encountered has the same annoying comment setup.

      Besides that, with my WordPress blog, if I am unhappy with my webhost, I can move my blog and retain stuff like my Technorati Authority ranking and incoming links.

      With Blogger, unless you are using your own domain name, you wouldn’t be able to do that. You’re pretty much stuck with what they offer you. And, if you move to a different host, you will have to change your URL (unless you had your own) and basically start all over with regard to your Technorati and other rankings. Plus, you will lose your incoming links (unless Blogger will 301 redirect from your old blog to your new one).

      You can certainly have success with any platform you choose, but it is best and more flexible to use something (like WordPress) that you can move to a different host if need be and also to have your own domain name to make any moves go more smoothly than they would otherwise if a move involves an URL change.

    2. A lot: mostly freedom to handle your blog as you think… Many using WP started out on Blogger, but I don’t think many went back to it!

      Kenneth

  15. Mac-Sage.com says:

    C’mon, upgrading WordPress is pretty dang simple. Why do you need a plugin?

    My feeling is, if you can’t upgrade the puppy, then maybe you shouldn’t be running a blog.

    Great blog, Chow.

    -Patrick

  16. Mybloggo says:

    Going to update

  17. Geedos says:

    I always get a bit nervous at update time – not sure why as it has never gone wrong, however for this reason I think I’ll stay away from the automatic updater and do it the old fashioned way.

    Call me a control freak but I like to be the one who chooses when and where to upgrade to the latest version – preferably at the weekend when I have enough time on my hands to fix any problems that do crop up.

  18. Budget Babe says:

    I realised that my installation did not include the upgrade so I just did it (my first ever time!) and it went without a hitch. I think I could get used to doing these updates now (I used to be terrified). Thanks John!

  19. April says:

    I’ve used the plugin and everything seems to be fine. :smile:

  20. I use my host’s One Click Install feature, but looks like they didn’t update yet. Should take one more day.

  21. Nathan says:

    i used the plugin too and it was fine

  22. Haven’t tried it yet, but it’s on the list..

  23. ThomasUkm says:

    :mrgreen:
    I have tried the plugin. Everything works fine, except on..
    item 9. Provide you with a upgradation log

    The notifier “item 9 failed” came out, i just ignored it and the upgrade still works.

    Anybody has this experience?

  24. I used the Automatic Upgrade Plugin for this release.

    It was a really smooth process and it took me only 30 seconds to upgrade and to even confirm if things were working fine.

    The plugin is really good.

    1. Click Input says:

      9 blog laters and I have finished upgrading… uploading is slow from here in Thailand too. Im gonna check out that plugin though

  25. Sunnye says:

    hmmm, all my custom hacks will have to be re-added now. Maybe not the best idea.

Comments are closed.