WordPress 4.2.2 Released
WordPress 4.2.2 was released today. This is a minor (0.0.1) update, but is important to apply, as it contains security fixes. Updates have been released for versions of WP prior to 4.2 as well.
The major vulnerability being addressed here relates to the Genericons XSS vulnerability, which we patched for all hosted sites earlier today.
This update also brings further protections against other XSS attacks, which is why it should be applied even to sites we host – although you are protected from the Genericons issue, the update will further improve the security of your site.
Anyone that is set to receive minor or major/minor core updates on our system will automatically receive this over the next 24 hours. Updates from the WordPress auto-updater are also rolling out as I write this. The changes made in this update are relatively minor, and unlikely to cause significant problems for many sites, so I would encourage you to update immediately if you don’t have auto-updates turned on.
As always, if you have any questions, please login to https://secure.lightningbase.com and open a ticket, we’ll be happy to help.