[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Security implication of using force-reload instead of restart ?


I've just noticed that on libapache2-mod-php5 package upgrade, apache 
server was not restartted (but only HUPed because of force-reload called 
from libapache2-mod-php5 postinst)

Doesn't this mean that running apache has still old version of php module 
loaded, so it still is vulnerable to issues fixed in php update?

Is this a severity serious bug?
Perhaps same situation exists with other package combinations as well?

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to: