summaryrefslogtreecommitdiffstats
path: root/package/rabbitmq-server/rabbitmq-server.hash
diff options
context:
space:
mode:
authorPeter Korsgaard <peter@korsgaard.com>2017-01-13 13:41:18 +0100
committerPeter Korsgaard <peter@korsgaard.com>2017-01-16 11:53:47 +0100
commita502f9acfd7ec5592d1e059e0180928b15abd59f (patch)
treeb67bcc8a0a18982b4472f83e72e1fabfeda9977e /package/rabbitmq-server/rabbitmq-server.hash
parent91888b306bf079a4bb81fb0515b5a7214214ae92 (diff)
downloadbuildroot-a502f9acfd7ec5592d1e059e0180928b15abd59f.tar.gz
buildroot-a502f9acfd7ec5592d1e059e0180928b15abd59f.zip
rabbitmq-server: security bump to version 3.6.6
Fixes a critical authentication vulnerability in the MQTT plugin (CVE-2016-9877): MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provided but the password is omitted from the connection request. Connections that use TLS with a client-provided certificate are not affected. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/rabbitmq-server/rabbitmq-server.hash')
-rw-r--r--package/rabbitmq-server/rabbitmq-server.hash2
1 files changed, 1 insertions, 1 deletions
diff --git a/package/rabbitmq-server/rabbitmq-server.hash b/package/rabbitmq-server/rabbitmq-server.hash
index be21477ff7..3cd412dd0f 100644
--- a/package/rabbitmq-server/rabbitmq-server.hash
+++ b/package/rabbitmq-server/rabbitmq-server.hash
@@ -1,2 +1,2 @@
# Locally computed
-sha256 c696134e863f99191a301288c12d69ff00b7e648107ee52c8686ae047dde1bee rabbitmq-server-3.6.1.tar.xz
+sha256 395689bcf57fd48aed452fcd43ff9a992de40067d3ea5c44e14680d69db7b78e rabbitmq-server-3.6.6.tar.xz
OpenPOWER on IntegriCloud