With just under a month to go before the expected release of WordPress version 2.3, Automattic has released WordPress version 2.3.2 which contains what else, security fixes. This release fixes a bug that would allow your draft posts to be exposed to the public. 2.3.2 also suppresses some error messages that would occur that could give away information related to your database structure. On top of all that, this fix stops information leaks in the XML-RPC and APP implementations.

As a little bonus, 2.3.2 allows you to define a custom DB error page. Place your custom template at wp-content/db-error.php. If WP has a problem connecting to your database, this page will displayed rather than the default error message.

For more detail on what’s new in 2.3.2, view the list of fixed bugs and see the changes between 2.3.1 and 2.3.2.

Special thanks to Alex Concha for his help on this release.

As with any new version, please upgrade as soon as you can, preferably after a fresh backup. As of this time, this blog has successfully been upgraded to 2.3.2.