Release 5.1.0 -------------- * Upgrades union_station_hooks_core to version 2.1.2. * [Enterprise] When running a Rails app in multithreaded mode, Passenger Enterprise automatically tags Rails logs with the current thread number. This makes it possible to distinguish logs generated by different threads. * Fixes permissions issue on Linux when setting OOM score after lowering privileges. Closes GH-1858. * [Standalone] Allows raw json envvars in Passengerfile.json. Closes GH-1837. * [Standalone] Make the `max_requests` option available on the command line as well. * Fixes unaligned memory access in base64 decoder on platforms that have strict aliasing requirements (non x86/x86_64). Closes GH-1646. * Introduces daily Passenger security update check to warn (error log) if there are newer Passenger versions with important security fixes (describing what was discovered, what is affected, which version has the fix). * Fixes compilation on Linux when a non-glibc C library is in use. Closes GH-1870. * `passenger-install-nginx-module` and the standalone compiler now add the http v2, realip and addition module flags for Nginx (just like the APT/RPM/autobuilder already had). Closes GH-1788. * [Apache] Fixes PassengerShowVersionInHeader option. Thanks to Sebastian Welther for contributing this. * Passenger now reports when you try to use Node.js or Meteor clustering, and tries to continue with just a nonfunctional shim in place, so that if your code uses the clustering APIs your app may still work. * Updates libev config.sub and config.guess to support newer platforms such as the IBM power 8. * Fixes an issue where passenger-config couldn't restart an app if the TMPDIR variable was set to /tmp * `passenger-install-apache-module` now suggests the correct apache package on Ubuntu Xenial. Closes GH-1884. * [Standalone] The TempDirToucher will now spend most of its time with reduced privileges, except when it's actively touching files. This allows it to be killed when Passenger is quit in most circumstances. Closes GH-1678. * Fixes a file overwrite vulnerability caused by a predictable temporary file being written by `passenger-install-nginx-module`. Thanks to Jeremy Evans for reporting this. * [Standalone] Fixes starting Passenger as a non-extant user. Closes GH-1849. * Improved look of the error pages for failing to spawn an application (development & production mode), and Error ID is now also shown in production mode. * [Standalone] Enable ipv6 support by default in builtin nginx. Closes GH-1873. * [Nginx] Updates to APT package builder (Debian & Ubuntu) with fix for www-data to root privilege escalation via log file handling (CVE-2016-1247/USN-3114-1). * [Nginx] Updates to RPM package builder (CentOS & RHEL) with fix for 1.10.x system nginx package overriding the nginx from the Passenger repo. Closes GH-1895. * [Nginx] The preferred Nginx version is now 1.10.2 (previously 1.10.1). * RPM pkg builder fix for breaking SELinux change in RHEL 7.3. * RPM pkg builder fix for RHEL6/CentOS6 incompatibility and replacement in Passenger.
There was no formal announcement about this version on their blog. In any case, added now.
Thank you. Since 5.0.30 does not work with apache 2.4.25, I just blindly checked the changelog.
(In reply to Tomáš Mózes from comment #2) > Thank you. Since 5.0.30 does not work with apache 2.4.25, I just blindly > checked the changelog. Hmm, passenger 5.0.30 seems to work fine with apache 2.4.25 for me.