summary refs log tree commit diff
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--CHANGES.md10
-rw-r--r--changelog.d/16324.docker1
-rw-r--r--debian/changelog6
-rw-r--r--pyproject.toml2
4 files changed, 17 insertions, 2 deletions
diff --git a/CHANGES.md b/CHANGES.md
index 13c53d2606..077588459a 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1,3 +1,13 @@
+# Synapse 1.92.2 (2023-09-15)
+
+This is a Docker only update to mitigate [CVE-2023-4863](https://cve.org/CVERecord?id=CVE-2023-4863), a critical vulnerability in `libewebp`. Server admins not using Docker should ensure that their `libwebp` is up to date (if installed). We encourage admins to upgrade as soon as possible.
+
+
+### Updates to the Docker image
+
+- Update docker image to use Debian bookworm as the base. ([\#16324](https://github.com/matrix-org/synapse/issues/16324))
+
+
 # Synapse 1.92.1 (2023-09-12)
 
 Stop building Ubuntu Kinetic since it is EOL and repos seem to be dead.
diff --git a/changelog.d/16324.docker b/changelog.d/16324.docker
deleted file mode 100644
index 43b31c6601..0000000000
--- a/changelog.d/16324.docker
+++ /dev/null
@@ -1 +0,0 @@
-Update docker image to use Debian bookworm as the base.
diff --git a/debian/changelog b/debian/changelog
index 9553967098..79e7fccfca 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+matrix-synapse-py3 (1.92.2) stable; urgency=medium
+
+  * New Synapse release 1.92.2.
+
+ -- Synapse Packaging team <packages@matrix.org>  Fri, 15 Sep 2023 13:17:41 +0100
+
 matrix-synapse-py3 (1.92.1) stable; urgency=medium
 
   * New Synapse release 1.92.1.
diff --git a/pyproject.toml b/pyproject.toml
index 821b13f5c4..1144114041 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -89,7 +89,7 @@ manifest-path = "rust/Cargo.toml"
 
 [tool.poetry]
 name = "matrix-synapse"
-version = "1.92.1"
+version = "1.92.2"
 description = "Homeserver for the Matrix decentralised comms protocol"
 authors = ["Matrix.org Team and Contributors <packages@matrix.org>"]
 license = "Apache-2.0"