Fix wording

author: Brendan Abolivier <babolivier@matrix.org> 2022-02-08 11:55:46 +0000
committer: Brendan Abolivier <babolivier@matrix.org> 2022-02-08 12:03:49 +0000
commit: 1aa2231e271f1b0b08757fc6f94c7c69c2993b25 (patch)
tree: aad71a937464551ac28cae53e36820f669431980
parent: Add words about the Twisted security fix (diff)
download: synapse-1aa2231e271f1b0b08757fc6f94c7c69c2993b25.tar.xz
2 files changed, 14 insertions, 12 deletions
diff --git a/CHANGES.md b/CHANGES.md
index 9bccf3f5ec..958024ff0c 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -3,12 +3,13 @@ Synapse 1.52.0 (2022-02-08)
 
 No significant changes since 1.52.0rc1.
 
-During the making of this release, the developers of Twisted have released
-[Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0), which
-fixes [a security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx)
-within Twisted. We do not believe Synapse to be vulnerable to any security problem caused
-by this issue, though we advise server administrators to update their local version of
-Twisted if they can.
+Note that [Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0)
+has recently been released, which fixes a [security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx)
+within the Twisted library. We do not believe Synapse is affected by this vulnerability,
+though we advise server administrators who installed Synapse via pip to upgrade Twisted
+with `pip install --upgrade Twisted` as a matter of good practice. The Docker image
+`matrixdotorg/synapse` and the Debian packages from `packages.matrix.org` are using the
+updated library.
 
 
 Synapse 1.52.0rc1 (2022-02-01)
diff --git a/docs/upgrade.md b/docs/upgrade.md
index 913f97385d..0105f87f90 100644
--- a/docs/upgrade.md
+++ b/docs/upgrade.md
@@ -89,12 +89,13 @@ process, for example:
 
 ## Twisted security release
 
-During the making of this release, the developers of Twisted have released
-[Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0), which
-fixes [a security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx)
-within Twisted. We do not believe Synapse to be vulnerable to any security problem caused
-by this issue, though we advise server administrators to update their local version of
-Twisted if they can.
+Note that [Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0)
+has recently been released, which fixes a [security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx)
+within the Twisted library. We do not believe Synapse is affected by this vulnerability,
+though we advise server administrators who installed Synapse via pip to upgrade Twisted
+with `pip install --upgrade Twisted` as a matter of good practice. The Docker image
+`matrixdotorg/synapse` and the Debian packages from `packages.matrix.org` are using the
+updated library.
 
 # Upgrading to v1.51.0
author	Brendan Abolivier <babolivier@matrix.org>	2022-02-08 11:55:46 +0000
committer	Brendan Abolivier <babolivier@matrix.org>	2022-02-08 12:03:49 +0000
commit	1aa2231e271f1b0b08757fc6f94c7c69c2993b25 (patch)
tree	aad71a937464551ac28cae53e36820f669431980
parent	Add words about the Twisted security fix (diff)
download	synapse-1aa2231e271f1b0b08757fc6f94c7c69c2993b25.tar.xz