This could be really devastating in shared hosting environments. Unless I’m overlooking something, all CentOS 7 + cPanel servers are currently running Apache 2.4.38, making them potentially vulnerable. Perhaps jailshell offers protection in this case, I’m not sure.
If you can update to 2.4.39, you should definitely do so.
Most user will have Apache installed via repo so you will just have to wait until it gets updated to .39 or the fix gets backported most major distro will probably have a patched version within a few days time.
Yeah, the problem is that people might install Apache/httpd from other sources than the official repos (which has version 2.4.6 from 2013). Not sure what cPanel installs.