WordPress 2.7 is just around the corner but in the mean time, Automatic have released WordPress 2.6.3. This version is just a security fix so you won’t see any major changes on your blog or in the admin area.
A vulnerability in the Snoopy library was announced today. WordPress uses Snoopy to fetch the feeds shown in the Dashboard. Although this seems to be a low risk vulnerability for WordPress users, we wanted to get an update out immediately. 2.6.3 is available for download right now. If you don’t want to download the whole release to get the security fix, you can download the following two files and copy them over your 2.6.2 installation.
- wp-includes/class-snoopy.php
- wp-includes/version.php
Although this appears to be a small security fix, I do recommend installing it (it’s only 2 files after all!) 
Link : WordPress 2.6.3
Another risk…hmmm…
-Mike
Although I am the kind of WP-user that ALWAYS immediately updates new releases, especially security releases, I would like to find a way to understand the severity of the updates …
I mean, I understand the problem, as I have worked with the Snoopy class as a programmer, but exactly what are the security implications if I did not update.. ?