apache2 crash with modsecurity secremoterules
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
modsecurity-apache (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Modsecurity configuration try load remote rules:
SecRemoteRules serial.key https:/
Causing crash:
Feb 19 04:42:47 localhost systemd[1]: Starting The Apache HTTP Server...
Feb 19 04:42:48 localhost kernel: [40737.981217] apache2[10455]: segfault at 2d ip 00007fc0b6c1c14b sp 00007ffc0de6b730 error 4 in mod_security2.
Feb 19 04:42:48 localhost kernel: [40737.981227] Code: e8 6a 6d fd ff 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 49 89 f5 41 54 55 4c 89 c5 53 48 89 d3 48 0f af d9 48 83 ec 08 <4d> 8b 60 08 4d 85 e4 75 5c 49 89 ff 48 8d 7b 01 4d 89 ce e8 1d 63
Feb 19 04:42:49 localhost apachectl[10445]: Segmentation fault (core dumped)
Feb 19 04:42:49 localhost apachectl[10445]: Action 'start' failed.
Feb 19 04:42:49 localhost apachectl[10445]: The Apache error log may have more information.
Feb 19 04:42:49 localhost systemd[1]: apache2.service: Control process exited, code=exited, status=139/n/a
Feb 19 04:42:49 localhost systemd[1]: apache2.service: Failed with result 'exit-code'.
Feb 19 04:42:49 localhost systemd[1]: Failed to start The Apache HTTP Server.
There is BUG in modsecurity 2.9.3 with secremoterules if sources are downloaded in: https:/
More information:
https:/
#lsb_release -rd
Description: Ubuntu 20.04.2 LTS
Release: 20.04
#apt-cache policy libapache2-
libapache2-
Installed: 2.9.3-1
Candidate: 2.9.3-1
Version table:
*** 2.9.3-1 500
500 http://
100 /var/lib/
You can close this I am the one person affected by this. I saw modsec has 3.0.4 now so i upgraded and it is working now