Add CVEs from samba release on 9th november 2021

author: Salvatore Bonaccorso <carnil@debian.org> 2021-11-08 21:10:17 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-11-09 19:32:41 +0100
commit: f7bacebc1517ae91b5449625313352f15af7d45a (patch)
tree: 0affde8683e7eab079caeb7969811a7b12d92b77 /data/CVE/2016.list
parent: 5d2cb74a83d868f29e93fec8c9eb57861338e85a (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list
index b64b177db4..74c30c2232 100644
--- a/data/CVE/2016.list
+++ b/data/CVE/2016.list
@@ -26864,8 +26864,10 @@ CVE-2016-2125 (It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 alwa
 	- samba 2:4.5.2+dfsg-2
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2125.html
 	NOTE: Patch (with some more) here: https://download.samba.org/pub/samba/patches/security/samba-4.3.12-security-20016-12-19.patch
-CVE-2016-2124
-	RESERVED
+CVE-2016-2124 [SMB1 client connections can be downgraded to plaintext authentication]
+	- samba <unfixed>
+	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=12444
+	NOTE: https://www.samba.org/samba/security/CVE-2016-2124.html
 CVE-2016-2123 (A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine n ...)
 	{DSA-3740-1}
 	- samba 2:4.5.2+dfsg-2
author	Salvatore Bonaccorso <carnil@debian.org>	2021-11-08 21:10:17 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-11-09 19:32:41 +0100
commit	f7bacebc1517ae91b5449625313352f15af7d45a (patch)
tree	0affde8683e7eab079caeb7969811a7b12d92b77 /data/CVE/2016.list
parent	5d2cb74a83d868f29e93fec8c9eb57861338e85a (diff)