UbuntuUpdates.org

Package "rabbitmq-server"

Name: rabbitmq-server

Description:

AMQP server written in Erlang
Latest version: 3.5.7-1ubuntu0.16.04.2
Release: xenial (16.04)
Level: security
Repository: main
Homepage: http://www.rabbitmq.com/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "rabbitmq-server"

All arch deb package
APT INSTALL

Other versions of "rabbitmq-server" in Xenial

Repository Area Version
base main 3.5.7-1
updates main 3.5.7-1ubuntu0.16.04.4

Changelog

Version: 3.5.7-1ubuntu0.16.04.2 2017-07-31 18:06:47 UTC

  rabbitmq-server (3.5.7-1ubuntu0.16.04.2) xenial-security; urgency=medium

  * SECURITY UPDATE: authentication bypass (LP: #1706900)
    - debian/patches/CVE-2016-9877.patch: fix password check in
      plugins-src/rabbitmq-mqtt/src/rabbit_mqtt_processor.erl, add test to
      plugins-src/rabbitmq-mqtt/test/src/com/rabbitmq/mqtt/test/MqttTest.java,
      fix URL in plugins-src/rabbitmq-mqtt/test/Makefile.
    - CVE-2016-9877

 -- Marc Deslauriers <email address hidden> Thu, 27 Jul 2017 14:36:17 -0400
1706900 CVE-2016-9877 RabbitMQ authentication vulnerability
CVE-2016-9877 An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, an


About   -   Send Feedback to @ubuntu_updates