It’s that time again: a new version of WordPress, now 3.1.2, is now available as a security update. It seems this fixes a vulnerability that would allow Contributor-level users to publish posts when they shouldn’t have been able to.
You can download 3.1.2 manually, or (much more likely) click that fancy update button in your Dashboard.
Interestingly, this issue was discovered by Andrew Nacin and Benjamin Balter. Nacin you may recognize as a member of the WordPress Core Commit team. Balter’s name first cropped up, at least here on WPCandy, just yesterday as a participant in Google Summer of Code this year. Someone give him extra credit.
Are you all updated? Do you use the Dashboard update, or do you still manually update the old school way?