Return-Path: 
 <users-return-109773-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
X-Original-To: apmail-httpd-users-archive@www.apache.org
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id CC90E11719
	for <apmail-httpd-users-archive@www.apache.org>;
 Fri,  1 Aug 2014 12:05:26 +0000 (UTC)
Received: (qmail 3404 invoked by uid 500); 1 Aug 2014 12:05:23 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 3368 invoked by uid 500); 1 Aug 2014 12:05:23 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 3357 invoked by uid 99); 1 Aug 2014 12:05:23 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 01 Aug 2014 12:05:23 +0000
X-ASF-Spam-Status: No, hits=-0.7 required=5.0
	tests=RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of covener@gmail.com designates
 209.85.213.178 as permitted sender)
Received: from [209.85.213.178] (HELO mail-ig0-f178.google.com)
 (209.85.213.178)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 01 Aug 2014 12:05:17 +0000
Received: by mail-ig0-f178.google.com with SMTP id uq10so1389793igb.17
        for <users@httpd.apache.org>; Fri, 01 Aug 2014 05:04:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type;
        bh=+q5EUcS6Tv8yCGtdxKmFgYicXBeWn3ashvtdJxmtXFI=;
        b=Up51rRDYDBIlcnrVNW6swwFf1IjMoqsc6uQKHnspAXSYVHlMg0ljBnf5wbBAaCEToF
         O7Vww2k8WKiv/Y1Wsdg03f/MqAMT5PkFZM9Ii7Lyr0PQaFrKPV0L5yzUImOsxq8FT/b/
         2oBtR71Hs8yNOlPKmaM3zV2pte80MHjBE37ispauj86p9hOFFPLld5kVo+UUWYV8+Qmy
         OcqWQx1nyGosOG7kq1PMWpO98uJWou9Fz3l8EEQl+TmVMTXC3K2ep7qNFL8qU3T9WXXB
         ud3QBGVpvwV1Bal2Z7DWwasiM7UYBjnUQ0hu88OVqvTyqk7Xh16/6vcbTJW+rXd2hoR1
         jA+g==
MIME-Version: 1.0
X-Received: by 10.43.95.10 with SMTP id ca10mr6563997icc.55.1406894697282;
 Fri, 01 Aug 2014 05:04:57 -0700 (PDT)
Received: by 10.107.28.16 with HTTP; Fri, 1 Aug 2014 05:04:57 -0700 (PDT)
In-Reply-To: 
 <CAC=HunseOneq3nOoVbSSADMPVgTpDeihHYOu+95b66fLUT2Qow@mail.gmail.com>
References: 
 <CAC=HunseOneq3nOoVbSSADMPVgTpDeihHYOu+95b66fLUT2Qow@mail.gmail.com>
Date: Fri, 1 Aug 2014 08:04:57 -0400
Message-ID: 
 <CALK=YjO44skvFhmxX7wdeYkuocboPiyX0-ayuvW3cmk4FQv+8w@mail.gmail.com>
From: Eric Covener <covener@gmail.com>
To: users@httpd.apache.org
Content-Type: text/plain; charset=UTF-8
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: Re: [users@httpd] CVE-2014-0226 vulnerability: mod_status.so was no
 longer ABI-compatible

On Fri, Aug 1, 2014 at 3:31 AM, Michele Mase' <michele.mase@gmail.com> wrote:
> After applying some vendor's patches (redhat and ubuntu), mod_status was
> broken; as a workaround, disabling it solves the issue

Does stopping and starting the server instead of restarting solve the
issue?   mod_status depends on httpd, and you're updating a running
httpd and sending it a signal to re-read its configuration. You aren't
actually running 2.4.10 after a restart.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org