This bug was fixed in the package rabbitmq-server - 3.5.7-1ubuntu0.16.04.2
--------------- rabbitmq-server (3.5.7-1ubuntu0.16.04.2) xenial-security; urgency=medium
* SECURITY UPDATE: authentication bypass (LP: #1706900) - debian/patches/CVE-2016-9877.patch: fix password check in plugins-src/rabbitmq-mqtt/src/rabbit_mqtt_processor.erl, add test to plugins-src/rabbitmq-mqtt/test/src/com/rabbitmq/mqtt/test/MqttTest.java, fix URL in plugins-src/rabbitmq-mqtt/test/Makefile. - CVE-2016-9877
-- Marc Deslauriers <email address hidden> Thu, 27 Jul 2017 14:36:17 -0400
This bug was fixed in the package rabbitmq-server - 3.5.7-1ubuntu0. 16.04.2
--------------- 1ubuntu0. 16.04.2) xenial-security; urgency=medium
rabbitmq-server (3.5.7-
* SECURITY UPDATE: authentication bypass (LP: #1706900) patches/ CVE-2016- 9877.patch: fix password check in src/rabbitmq- mqtt/src/ rabbit_ mqtt_processor. erl, add test to src/rabbitmq- mqtt/test/ src/com/ rabbitmq/ mqtt/test/ MqttTest. java, src/rabbitmq- mqtt/test/ Makefile.
- debian/
plugins-
plugins-
fix URL in plugins-
- CVE-2016-9877
-- Marc Deslauriers <email address hidden> Thu, 27 Jul 2017 14:36:17 -0400