Add CVE-2021-40874/lemonldap-ng

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-15 09:37:05 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-15 09:37:05 +0100
commit: 1cfc138819dcddfa1ac399a430c394b9fe3ea1b5 (patch)
tree: 93fd10fc095e75ee7c002486c098f62afe7fca0c /data
parent: 2040d56f6ef7a1a95460cae492db484b3c7ac5fb (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index c5745aa9b5..a6cd290c86 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -20864,8 +20864,11 @@ CVE-2021-40876
 	RESERVED
 CVE-2021-40875 (Improper Access Control in Gurock TestRail versions &lt; 7.2.0.3014 re ...)
 	NOT-FOR-US: Gurock TestRail
-CVE-2021-40874
+CVE-2021-40874 [RESTServer pwdConfirm always returns true with Combination + Kerberos]
 	RESERVED
+	- lemonldap-ng <unfixed>
+	NOTE: https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/2612
+	NOTE: https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/commit/66946e8f754812b375768c2124937137c856fe0c
 CVE-2021-40873 (An issue was discovered in Softing Industrial Automation OPC UA C++ SD ...)
 	NOT-FOR-US: Softing Industrial Automation
 CVE-2021-40872 (An issue was discovered in Softing Industrial Automation uaToolkit Emb ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-15 09:37:05 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-15 09:37:05 +0100
commit	1cfc138819dcddfa1ac399a430c394b9fe3ea1b5 (patch)
tree	93fd10fc095e75ee7c002486c098f62afe7fca0c /data
parent	2040d56f6ef7a1a95460cae492db484b3c7ac5fb (diff)