Just a heads up that the Samba maintainer for Debian has acknowledged there is a regression in the latest Debian package and that there will be an update to address this soon: [Pkg-samba-maint] Restoring pre Badlock CVE behavior in libsmbclient.
In the interim, we have also done some work which will improve things for users trying to connect via Kodi to legacy SMB devices which do not support NTLVM2 authentication. This will be made available shortly in the next update.