OpenLDAP libldap’s strval2strlen() function contained a bug when processing the authcid string of certain Bind Requests, which could allow attackers to cause an affected application (especially the OpenLDAP Server) to crash.
There is no known workaround, please install the update packages.