Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
GitLab Runner 18.10.1

We will update GitLab Runner to version 18.10.1.

Reference: #100

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

LimeSurvey 6.16.15

We will update LimeSurvey to version 6.16.15.

Reference: #85

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Elasticsearch 8.19.14

We will update Elasticsearch to version 8.19.14.

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Kibana 8.19.14

We will update Kibana to version 8.19.14.

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Bugsink 2.1.2

We will update Bugsink to version 2.1.2.

Reference: #26 #27

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Cluster Maintenance

We will update soft- and firmware throughout our cluster. During the update, a higher disk i/o latency is to be expected.

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 06:00

Zammad 7.0.1

We will update Zammad to version 7.0.1.

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

  • blackfire/any 2:2026.4.1 amd64 [upgradable from: 2:2026.3.2]
  • docker-ce/bullseye 5:29.4.0-1~debian.11~bullseye amd64 [upgradable from: 5:29.3.1-1~debian.11~bullseye]
  • docker-ce-cli/bullseye 5:29.4.0-1~debian.11~bullseye amd64 [upgradable from: 5:29.3.1-1~debian.11~bullseye]
  • docker-ce-rootless-extras/bullseye 5:29.4.0-1~debian.11~bullseye amd64 [upgradable from: 5:29.3.1-1~debian.11~bullseye]
  • docker-compose-plugin/bullseye 5.1.2-1~debian.11~bullseye amd64 [upgradable from: 5.1.1-1~debian.11~bullseye]
  • libpq5/oldoldstable-security 13.23-0+deb11u2 amd64 [upgradable from: 13.23-0+deb11u1]
  • ops-php84/unknown 8.4.20-ops-115589 amd64 [upgradable from: 8.4.19-ops-109813]

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version.

  • chromium-common/oldstable-security 147.0.7727.55-1~deb12u1 amd64 [upgradable from: 146.0.7680.177-1~deb12u1]
  • chromium/oldstable-security 147.0.7727.55-1~deb12u1 amd64 [upgradable from: 146.0.7680.177-1~deb12u1]
  • chromium-sandbox/oldstable-security 147.0.7727.55-1~deb12u1 amd64 [upgradable from: 146.0.7680.177-1~deb12u1]
  • docker-ce/bookworm 5:29.4.0-1~debian.12~bookworm amd64 [upgradable from: 5:29.3.1-1~debian.12~bookworm]
  • docker-ce-cli/bookworm 5:29.4.0-1~debian.12~bookworm amd64 [upgradable from: 5:29.3.1-1~debian.12~bookworm]
  • docker-ce-rootless-extras/bookworm 5:29.4.0-1~debian.12~bookworm amd64 [upgradable from: 5:29.3.1-1~debian.12~bookworm]
  • docker-compose-plugin/bookworm 5.1.2-1~debian.12~bookworm amd64 [upgradable from: 5.1.1-1~debian.12~bookworm]
  • libgdk-pixbuf-2.0-0/oldstable-security 2.42.10+dfsg-1+deb12u4 amd64 [upgradable from: 2.42.10+dfsg-1+deb12u3]
  • libgdk-pixbuf2.0-bin/oldstable-security 2.42.10+dfsg-1+deb12u4 amd64 [upgradable from: 2.42.10+dfsg-1+deb12u3]
  • libgdk-pixbuf2.0-common/oldstable-security 2.42.10+dfsg-1+deb12u4 all [upgradable from: 2.42.10+dfsg-1+deb12u3]
  • libtiff6/oldstable-security 4.5.0-6+deb12u4 amd64 [upgradable from: 4.5.0-6+deb12u3]
  • openssh-client/oldstable-security 1:9.2p1-2+deb12u9 amd64 [upgradable from: 1:9.2p1-2+deb12u7]
  • openssh-server/oldstable-security 1:9.2p1-2+deb12u9 amd64 [upgradable from: 1:9.2p1-2+deb12u7]
  • openssh-sftp-server/oldstable-security 1:9.2p1-2+deb12u9 amd64 [upgradable from: 1:9.2p1-2+deb12u7]
  • ops-php84/unknown 8.4.20-ops-115585 amd64 [upgradable from: 8.4.19-ops-109804]
  • ops-php85/unknown 8.5.5-ops-115586 amd64 [upgradable from: 8.5.4-ops-109815]

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Managed Server 10: Debian Updates

We will update the following packages to the latest version.

  • libgdk-pixbuf-2.0-0/stable-security 2.42.12+dfsg-4+deb13u1 amd64 [upgradable from: 2.42.12+dfsg-4]
  • libgdk-pixbuf2.0-common/stable-security 2.42.12+dfsg-4+deb13u1 all [upgradable from: 2.42.12+dfsg-4]
  • libtiff6/stable-security 4.7.0-3+deb13u2 amd64 [upgradable from: 4.7.0-3+deb13u1]
  • openssh-client/stable-security 1:10.0p1-7+deb13u2 amd64 [upgradable from: 1:10.0p1-7+deb13u1]
  • openssh-server/stable-security 1:10.0p1-7+deb13u2 amd64 [upgradable from: 1:10.0p1-7+deb13u1]
  • openssh-sftp-server/stable-security 1:10.0p1-7+deb13u2 amd64 [upgradable from: 1:10.0p1-7+deb13u1]
  • ops-php84/unknown 8.4.20-ops-115588 amd64 [upgradable from: 8.4.19-ops-109809]
  • ops-php85/unknown 8.5.5-ops-115587 amd64 [upgradable from: 8.5.4-ops-109812]

Start maintenance window: 13/04/2026 23:00
Stop maintenance window: 14/04/2026 02:00

Past Incidents

Saturday 20th January 2018

No incidents reported

Friday 19th January 2018

No incidents reported

Thursday 18th January 2018

Managed Server Version 5: Enhance Lets Encrypt Debugging

From time to time, you will encounter problems while changing website configurations with enabled Let's Encrypt certificated. Most of the time, this is related to a failed validation request, for example because a certain server name does not point to our host already.

By now, it was pretty hard to reach the debugging output of our Let's Encrypt client, and it was not possible at all to enforce a run from a shell account. With this change, we add the letsencrypt-renew shortcut which will allow you to enforce renewal and immediately see the output should a problem arise.

For details, please see the corresponding new part in our documentation.

Wednesday 17th January 2018

No incidents reported

Tuesday 16th January 2018

Managed Server Version 4: graphicsmagick and libgraphicsmagick3 update, scheduled 8 years ago

Package: graphicsmagick
Version: 1.3.16-1.1+deb7u17
CVE ID: CVE-2018-5685
Debian Bug: 887158

  • libgraphicsmagick3 1.3.16-1.1+deb7u16 was updated to version libgraphicsmagick3_1.3.16-1.1+deb7u17_amd64.deb.
  • graphicsmagick 1.3.16-1.1+deb7u16 was updated to version graphicsmagick_1.3.16-1.1+deb7u17_amd64.deb.
A vulnerability has been discovered in GraphicsMagick, a collection of
image processing tools, which may result in a denial of service.

CVE-2018-5685
    An infinite loop and application hang has been discovered in the
    ReadBMPImage function (coders/bmp.c). Remote attackers could
    leverage this vulnerability to cause a denial of service via an
    image file with a crafted bit-field mask value.
Managed Server Version 5: gdk-pixbuf update, scheduled 8 years ago

Package: gdk-pixbuf
CVE ID: CVE-2017-1000422

  • libgdk-pixbuf2.0-0 2.31.1-2+deb8u6 was updated to version 2.31.1-2+deb8u7.
  • libgdk-pixbuf2.0-common 2.31.1-2+deb8u6 was updated to version 2.31.1-2+deb8u7.
It was discovered that multiple integer overflows in the GIF image loader
in the GDK Pixbuf library may result in denial of service and potentially
the execution of arbitrary code if a malformed image file is opened.

Monday 15th January 2018

Managed Server Version 5: libxml2 update, scheduled 8 years ago

Package: libxml2
CVE ID: CVE-2017-15412
Debian Bug: 883790

libxml2 2.9.1+dfsg1-5+deb8u5 was updated to version 2.9.1+dfsg1-5+deb8u6.

Nick Wellnhofer discovered that certain function calls inside XPath
predicates can lead to use-after-free and double-free errors when
executed by libxml2's XPath engine via an XSLT transformation.

Sunday 14th January 2018

No incidents reported