Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
Cluster Maintenance

We will update soft- and firmware throughout our cluster. During the update, a higher disk i/o latency is to be expected. To adjust for new CPU flags, each VM will be rebooted once during the maintenance window.

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 06:00

Update Collabora 25.04.7.1.1

We will update Collabora to version 25.04.7.1.1.

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version:

  • chromium-common/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
  • chromium/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
  • chromium-sandbox/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
  • containerd.io/bookworm 1.7.29-1~debian.12~bookworm amd64 [upgradable from: 1.7.28-1~debian.12~bookworm]
  • docker-ce/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]
  • docker-ce-cli/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]
  • docker-ce-rootless-extras/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

  • bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • blackfire/any 2:2.29.3 amd64 [upgradable from: 2:2.29.2]
  • containerd.io/bullseye 1.7.29-1~debian.11~bullseye amd64 [upgradable from: 1.7.28-1~debian.11~bullseye]
  • dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
  • docker-ce/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
  • docker-ce-cli/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
  • docker-ce-rootless-extras/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
  • libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

LimeSurvey 6.15.22

We will update LimeSurvey to version 6.15.22.

Reference: #66

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Keycloak 26.4.4

We will update Keycloak to version 26.4.4.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Past Incidents

Thursday 11th January 2018

No incidents reported

Wednesday 10th January 2018

Reboot container nodes to mitigate meltdown vulnerability, scheduled 7 years ago

We will reboot our container virtualisation nodes in order to mitigate the meltdown vulnerability.

Affected servers

  • Generation 3 (Debian 6, PHP 5.3)
  • Generation 4 (Debian 7, PHP 5.4)
  • Generation 5 (Debian 8, PHP 5.6/7.0)

Start Maintenance Window

10.01.2018 00:00

End Maintenance Window

10.01.2018 02:00

Tuesday 9th January 2018

Managed Server Version 5 Updates: php5-cli php5-common php5-curl php5-fpm php5-gd php5-mysql php5-readline, scheduled 7 years ago

php5 5.6.30+dfsg-0+deb8u1 was updated to version 5.6.33+dfsg-0+deb8u1.

Several vulnerabilities were found in PHP

For Debian 8, these problems have been fixed
in version 5.6.33+dfsg-0+deb8u1.
Managed Server Version 4 Updates: graphicsmagick libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-common libgraphicsmagick3, scheduled 7 years ago

graphicsmagick 1.3.16-1.1+deb7u15 was updated to version 1.3.16-1.1+deb7u16.

The NSFocus Security Team discovered multiple security issues in
Graphicsmagick, a collection of image processing tools. Several
heap-based buffer over-reads may lead to a denial-of-service
(application crash) or possibly have other unspecified impact when
processing a crafted file.

For Debian 7 "Wheezy", these problems have been fixed in version
1.3.16-1.1+deb7u16.

gdk-pixbuf 2.26.1-1+deb7u6 was updated to version 2.26.1-1+deb7u7.

It was discovered that there were several integer overflows in
gdk-pixbuf, a library to manipulate images for the GTK graphics toolkit.
This could have led to memory corruption and potential code execution.

For Debian 7 "Wheezy", this issue has been fixed in gdk-pixbuf version
2.26.1-1+deb7u7.
Managed Server Version 5: Add monitoring check for spectre and meltdown vulnerability

With this new check, our monitoring will scan each server for the spectre and meltdown vulnerability daily. This allows us to keep track of all affected systems and make sure won't miss any patches.

As soon as its known when we can expect a fixed kernel version, we will inform you about the corresponding maintenance window.

Monday 8th January 2018

Managed Server: poppler update, scheduled 7 years ago

Package: poppler
Version: 0.26.5-2+deb8u2

Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed.

Sunday 7th January 2018

No incidents reported

Saturday 6th January 2018

No incidents reported

Friday 5th January 2018

No incidents reported