If you read the CVE and follow the link to the related OpenLDAP ITS, you
will discover that the reported issue was marked invalid. I.e., what was
reported is not a security vulnerability, or will it ever be fixed.
Hope this helps!
Packaged, certified, and supported LDAP solutions powered by OpenLDAP: