4.4.34

TL;DR

WordPress 4.4.34 is primarily a security and maintenance release that updates the bundled Root Certificates, improves build and test tools, and adds an end-of-support notification for WordPress 4.4. This release ensures continued security for sites still running this legacy version while encouraging users to upgrade to newer WordPress versions for ongoing security updates.

Highlight of the Release

• Updated Root Certificate bundle to improve SSL certificate verification
• Added end-of-support notification for WordPress 4.4
• Improved build and test tools for the 4.4 branch
• Updated composer/ca-bundle to version 1.5.7

Migration Guide

End of Support Notice

WordPress 4.4 has reached its end of support. This means:

1. No further security updates will be provided for WordPress 4.4
2. Sites running WordPress 4.4 may become vulnerable to security issues
3. Users should upgrade to the latest version of WordPress as soon as possible

To upgrade from WordPress 4.4 to a current version:

1. Back up your website files and database
2. Follow the WordPress upgrade instructions
3. Test your site thoroughly after upgrading

If you're unable to upgrade directly to the latest version, consider upgrading incrementally through major versions (e.g., 4.4 → 4.9 → 5.x → 6.x).

Upgrade Recommendations

Immediate upgrade is strongly recommended for all WordPress 4.4 users.

This release contains important security updates, particularly to the Root Certificate bundle that helps secure connections to external services. However, WordPress 4.4 has reached its end of support, and this may be one of the final security updates for this branch.

Important: Users should plan to upgrade to the latest WordPress version as soon as possible, as WordPress 4.4 will no longer receive security updates. Continuing to run an unsupported version puts your site at risk.

Bug Fixes

Build and Test Environment Fixes

• Fixed issues with the WordPress Importer plugin in test environments by switching from SVN to Git for fetching the plugin
• Fixed JavaScript testing on Ubuntu 24 by disabling AppArmor
• Fixed MySQL container configuration to always prefer amd64 containers
• Fixed SVN-related commands that were causing failures in CI/CD workflows
• Improved healthcheck command for the MySQL container

New Features

No new features were added in this release. WordPress 4.4.34 is primarily a security and maintenance release focused on updating security components and improving build/test tools.

Security Updates

• Updated the bundled Root Certificate bundle (ca-bundle.crt) to the latest version from Mozilla, which improves SSL certificate verification while maintaining backward compatibility with legacy certificates
• Updated composer/ca-bundle to version 1.5.7
• Added an end-of-support notification to alert users that WordPress 4.4 is no longer receiving security updates and they should upgrade to a newer version

Performance Improvements

This release doesn't include specific performance improvements for end users. The changes are primarily focused on security updates and improvements to the build and test infrastructure.

Impact Summary

WordPress 4.4.34 is primarily a security maintenance release that updates critical security components like the Root Certificate bundle and adds an end-of-support notification. While this release helps maintain security for sites still running WordPress 4.4, it also signals that this branch is reaching the end of its supported lifecycle.

The most significant impact is the updated Root Certificate bundle, which ensures sites running WordPress 4.4 can continue to establish secure connections with external services. This is particularly important for features that rely on external API calls or secure connections.

For developers working with the 4.4 branch, the improvements to build and test tools provide better compatibility with modern development environments, particularly for Docker-based setups.

However, the addition of the end-of-support notification is a clear signal that users should prioritize upgrading to a newer WordPress version to continue receiving security updates. This release should be viewed as a transitional update to help maintain security while users plan their upgrade path.