Skip to content

Version 6.5.2
Compare
Choose a tag to compare
@wordpress-packager wordpress-packager released this 09 Apr 22:33
· 5 commits to main since this release
6.5.2
41ff6e2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Sourced from WordPress.org Documentation.

Summary

Security updates

This security and maintenance release features 2 bug fixes on Core12 bug fixes for the Block Editor, and 1 security fix:

  • A cross-site scripting (XSS) vulnerability affecting the Avatar block type; reported by John Blackbourn of the WordPress security team. Many thanks to Mat Rollings for assisting with the research.

The earliest release requiring patching was WordPress 6.1.

Thank you to everyone who contributed to WordPress 6.5.2: Aki Hamano, Andrei Draganescu, Artemio Morales, Caleb Burks, colind, Daniel Richards, Dominik Schilling, Fabian Kägy, George Mamadashvili, Greg Ziółkowski, Isabel Brison, Jb Audras, Joe McGill, John Blackbourn, Jonathan Desrosiers, Lovekesh Kumar, Matias Benedetto, Mukesh Panchal, Pascal Birchler, Peter Wilson, Sean Fisher, and Sergey Biryukov.

This release was led by John BlackbournIsabel Brison, and Aaron Jorbin.

For more information, browse the full list of changes on Trac.

Assets 2
Loading