Top

cPanel ModSecurity v2.9.3 results in apache service failures

The following update to the ea-apache24-mod_security2 RPM was included as part of the initial May 29 EasyApache 4 Release:

EA-8081 – Update Mod_security2 to 2.9.3

Upon the publication of this update, we observed reports of Apache service failures stemming from ModSecurity segmentation faults.

kernel: [123456.123456] httpd[12345]: segfault at 9 ip 0000000000000000 sp 0000000000000 error 4 in mod_security2.so

Check installed version

rpm -qa|grep ea-apache24-mod_security2

If the name of the RPM seen in the output of this command starts with ea-apache24-mod_security2-2.9.2, no additional action is required.

If the name of the RPM seen in the output of this command starts with ea-apache24-mod_security2-2.9.3, execute the following commands to downgrade it to the previous version:

Downgrade modsecurity

yum clean all
yum downgrade ea-apache24-mod_security2

Read more …

Also ModSecurity v2.9.3 have SecRemoteRules problem …

, , , , , , ,

Comments are closed.