today when I logged on WHM I saw the famous red box saying the apache is vulnerable

checking cpanel forum and securityfocus i just found minor problems that should not be enough for remote (or even local - one user to other) attack

if it's not that dangerous, i'm planning to update just in 13 hours (because it will be late night here) otherwise I'll do that now

Lem0nHead, Its always good to upgrade as soon as you see those security warnings. The update will take no more then 30 min, but you would loose a lot in case you get hacked.

the problem is that any change (specially recompiling apache) may lead to problems or downtime
that's why i'd prefer doing that late night if not urgent

the latest php one is the memory_limit exploit.. from the advisory it can run code.. but no exploit has been released pubically yet.. so you'd be ok to wait

zupanm, :) we've had a very close call with a cpanel explit which wasent public yet as well. Its always a good idea to upgrade as soon as you can for ANY security related issue.