From secunia security advisory at $URL: Description: The weakness is caused due to child processes being able to change the memory type record of the "scoreboard" shared memory segment, which can be exploited to cause an invalid free operation during the shutdown of the parent process. Solution: Fixed in the SVN repository. http://svn.apache.org/viewvc?view=revision&revision=1230065
Added to existing GLSA request.
For the record: CVE in bug 401081.
This issue was resolved and addressed in GLSA 201206-25 at http://security.gentoo.org/glsa/glsa-201206-25.xml by GLSA coordinator Tobias Heinlein (keytoaster).