Aha, thank you! I'd checked the release note for 17.9.x, but I didn't do a general bug search.

It's odd that the bug has a status of "Fixed" when the list of fixed releases is empty, but maybe they mean that it's been fixed in the dev build so it will go into the next release.

In my case, this is an HA pair. I forced a failover a few days ago (which involved rebooting the chassis that was active at the time), but that didn't help. I'll try another reboot, but it looks like I'm stuck with it for now.

                 >...It's odd that the bug has a status of "Fixed" when the list of fixed releases is empty,
 Indeed , you may want to query TAC about it ; other options are trying with latest 17.12.x (adventure) ; or downloading virtual controller with 17.12.x (is downloadable without service contract) ; copy configuration and test on the virtual controller ; of course all of that would need time investment ,

 M.

That's useful to know, thank you. However, I don't think it's the case here.

Looking at the 17.9.x branch, this bug was introduced in version 17.9.4 and it's still present in 17.9.4a (i.e. the latest version which is available for download). The only difference between those 2 versions is that 17.9.4a fixes the zero day vulnerabilities which were discovered recently:
Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature

My guess is that the lobby admin bug was fixed internally, ready to be included in 17.9.5. However, Cisco had to fork their source code to fix the zero day vuln (i.e. they had to rush out 17.9.4a as an emergency fix), and 17.9.5 probably won't be out until December.

I've been hearing Jan/Feb for 17.9.5 (although these dates can always change).  I'm guessing it's had problems that required re-work + adding the vulnerability fix.

Thats too long to wait, they should not suggest it as Recommended Version if there are bugs present or detected on that version.

They should probably at-least make a working workaround if it will take that long to release the fixed version.

Every release has bugs so it's a judgement of how many and how severe. 

If it's generally stable and no severe issues for most users then it will qualify as a recommended release.

Re "working workaround" - I've complained about the quality of the bug notes numerous times and still continue to do so.  I've pointed out to TAC bugs which have factually incorrect subject lines and notes (literally the opposite meaning of the bug sometimes) and months later some still have not been corrected.  Be sure to rate the bugs as Leo suggests and also ask TAC to escalate with dev/BU to get the notes corrected as well.  The more who do that, the more likely they are to take the trouble to get them right.  It feels like there are no checks and review processes for any of this stuff anymore or the people doing the checks and reviews either aren't capable of spotting the mistakes or just pass things without any checks at all.  The outsourced TAC staff seem to be terrified of contacting devs and BU about anything so you have to escalate to their managers and/or your account team if they refuse to.

17.12.2 is available for download now.

Thanks just saw it, has anyone tried it? I see that it is still not a recommended version and might contains more than 1 bug as it's a ED.

Also waiting for the compatibility matrix if the aironet 1800s and 1700s still supported on the version

There are release notes for the 17.12.x branch as a whole, which say that the 1700 and 1800 APs are supported:
Release Notes for Cisco Catalyst 9800 Series Wireless Controller, Cisco IOS XE Dublin 17.12.x - Cisco

However, there's a note further down the page:

"The DTLS version (DTLSv1.0) is deprecated for Cisco Aironet 1800 based on latest security policies. Therefore, any new out-of-box deployments of Cisco Aironet 1800 APs will fail to join the controller and you will get the following error message:
[..]"