Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issue:
- CVE-2016-9877: An issue in Pivotal RabbitMQ caused connection authentication with a username/password pair to succeed
if an existing username was provided but the password is omitted from the connection request. Connections that use TLS
with a client-provided certificate were not affected (bsc#1017642).
- Submitted by Chris Ellis (intrbiz)
Fixed bugs
bnc#1017642
VUL-1: CVE-2016-9877: rabbitmq-server: authentication vulnerability