From 247dc1bd0bd9ee2b9525495c0dbd819baf10ec1f Mon Sep 17 00:00:00 2001
From: Richard van der Hoff <richard@matrix.org>
Date: Fri, 3 May 2019 12:38:03 +0100
Subject: Use SystemRandom for token generation

---
 changelog.d/5133.bugfix | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 changelog.d/5133.bugfix

(limited to 'changelog.d/5133.bugfix')

diff --git a/changelog.d/5133.bugfix b/changelog.d/5133.bugfix
new file mode 100644
index 0000000000..12a32a906b
--- /dev/null
+++ b/changelog.d/5133.bugfix
@@ -0,0 +1 @@
+Switch to using a cryptographically-secure random number generator for token strings, ensuring they cannot be predicted by an attacker. Thanks to @opnsec for for identifying and responsibly disclosing this issue!
-- 
cgit 1.5.1


From 60c3635f0507699ccb63115ff974f54d45c90c83 Mon Sep 17 00:00:00 2001
From: Neil Johnson <neil@matrix.org>
Date: Fri, 3 May 2019 14:40:15 +0100
Subject: typo

---
 changelog.d/5133.bugfix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'changelog.d/5133.bugfix')

diff --git a/changelog.d/5133.bugfix b/changelog.d/5133.bugfix
index 12a32a906b..be6474a692 100644
--- a/changelog.d/5133.bugfix
+++ b/changelog.d/5133.bugfix
@@ -1 +1 @@
-Switch to using a cryptographically-secure random number generator for token strings, ensuring they cannot be predicted by an attacker. Thanks to @opnsec for for identifying and responsibly disclosing this issue!
+Switch to using a cryptographically-secure random number generator for token strings, ensuring they cannot be predicted by an attacker. Thanks to @opnsec for identifying and responsibly disclosing this issue!
-- 
cgit 1.5.1