This bug was fixed in the package openldap - 2.4.23-6ubuntu6
---
openldap (2.4.23-6ubuntu6) natty; urgency=low
* SECURITY UPDATE: fix successful anonymous bind via chain overlay when
using forwarded authentication failures
- debian/patches/CVE-2011-1024
- CVE-2011-1024
https://lists.ubuntu.com/archives/ubuntu-security-
announce/2011-March/001293.html
** Also affects: openldap (Ubuntu Hardy)
Importance: Undecided
Status: New
** Also affects: openldap (Ubuntu Karmic)
Importance: Undecided
Status: New
** Also affects: openldap (Ubuntu Natty)
Thank you for using Ubuntu and reporting a bug. Packages are already
being prepared to address this vulnerability.
** Visibility changed to: Public
** Changed in: openldap (Ubuntu)
Status: New = In Progress
** Changed in: openldap (Ubuntu)
Assignee: (unassigned) = Jamie Strandboge