Package: apache-ssl Version: 1.3.26.1+1.48-0woody3 Severity: important On a woody+security-updates system with apache-ssl+gcache and php4 installed, the latest security update (1.3.26.1+1.48-0woody3) seems to cause some trouble. Apache creates the files session_mm_apache0.mem and session_mm_apache0.sem in the /tmp directory upon startup. The *.mem file is 64 MB in size but only created as a sparse file, needing 12 kB on disk.
Each morning, logrotate does a reload of apache. What happens is that it doesn't handle the reload properly and crashes. Additionally, the mem file is fully used then, filling up /tmp and thus blocking other services such as a cvs-server from working. (I'm not sure whether the crash provokes the fillup or the other way around.) It should be noted that the system uses a UML kernel but this shouldn't make any difference. This behaviour did not happen a week ago, which I think correlates to the security update. A (user-level) login can be granted for further inspection, should that be necessary. Josef -- System Information Debian Release: 3.0 Architecture: i386 Kernel: Linux vs011 2.4.26-1um #4 Tue Apr 20 17:09:55 PDT 2004 i686 Locale: LANG=C, LC_CTYPE=C Versions of packages apache-ssl depends on: ii apache-common 1.3.26-0woody5 Support files for all Apache webse ii dpkg 1.9.21 Package maintenance system for Deb ii libc6 2.2.5-11.5 GNU C Library: Shared libraries an ii libdb2 2:2.7.7.0-7 The Berkeley database routines (ru ii libexpat1 1.95.2-6 XML parsing C library - runtime li ii libssl0.9.6 0.9.6c-2.woody.6 SSL shared libraries ii logrotate 3.5.9-8 Log rotation utility ii mime-support 3.18-1.3 MIME files 'mime.types' & 'mailcap ii openssl 0.9.6c-2.woody.6 Secure Socket Layer (SSL) binary a ii perl 5.6.1-8.7 Larry Wall's Practical Extraction ii perl [perl5] 5.6.1-8.7 Larry Wall's Practical Extraction
