diff options
| author | Brendan Abolivier <babolivier@matrix.org> | 2022-02-08 11:55:46 +0000 |
|---|---|---|
| committer | Brendan Abolivier <babolivier@matrix.org> | 2022-02-08 12:03:49 +0000 |
| commit | 1aa2231e271f1b0b08757fc6f94c7c69c2993b25 (patch) | |
| tree | aad71a937464551ac28cae53e36820f669431980 /CHANGES.md | |
| parent | Add words about the Twisted security fix (diff) | |
| download | synapse-1aa2231e271f1b0b08757fc6f94c7c69c2993b25.tar.xz | |
Fix wording
Diffstat (limited to 'CHANGES.md')
| -rw-r--r-- | CHANGES.md | 13 |
1 files changed, 7 insertions, 6 deletions
diff --git a/CHANGES.md b/CHANGES.md index 9bccf3f5ec..958024ff0c 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -3,12 +3,13 @@ Synapse 1.52.0 (2022-02-08) No significant changes since 1.52.0rc1. -During the making of this release, the developers of Twisted have released -[Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0), which -fixes [a security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx) -within Twisted. We do not believe Synapse to be vulnerable to any security problem caused -by this issue, though we advise server administrators to update their local version of -Twisted if they can. +Note that [Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0) +has recently been released, which fixes a [security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx) +within the Twisted library. We do not believe Synapse is affected by this vulnerability, +though we advise server administrators who installed Synapse via pip to upgrade Twisted +with `pip install --upgrade Twisted` as a matter of good practice. The Docker image +`matrixdotorg/synapse` and the Debian packages from `packages.matrix.org` are using the +updated library. Synapse 1.52.0rc1 (2022-02-01) |