Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.

All systems are operational

Core

Cluster

Operational

Network

Operational

DNS

Operational

Cockpit

Operational

Domain Registration

Operational

Managed Server

Version 10

Operational

Version 9

Operational

Version 8

Operational

Version 7

Operational

Version 6

Operational

Version 5

Operational

Version 4

Operational

Version 3

Operational

Managed Applications

Matomo

Operational

Nextcloud

Operational

Mailserver

Operational

Discourse

Operational

GitLab

Operational

Scheduled Maintenance

Cluster Maintenance

We will update soft- and firmware throughout our cluster. During the update, a higher disk i/o latency is to be expected. To adjust for new CPU flags, each VM will be rebooted once during the maintenance window.

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 06:00

Update Collabora 25.04.7.1.1

We will update Collabora to version 25.04.7.1.1.

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version:

chromium-common/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
chromium/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
chromium-sandbox/oldstable-security 142.0.7444.134-1~deb12u1 amd64 [upgradable from: 142.0.7444.59-1~deb12u1]
containerd.io/bookworm 1.7.29-1~debian.12~bookworm amd64 [upgradable from: 1.7.28-1~debian.12~bookworm]
docker-ce/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]
docker-ce-cli/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]
docker-ce-rootless-extras/bookworm 5:28.5.2-1~debian.12~bookworm amd64 [upgradable from: 5:28.5.1-1~debian.12~bookworm]

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
blackfire/any 2:2.29.3 amd64 [upgradable from: 2:2.29.2]
containerd.io/bullseye 1.7.29-1~debian.11~bullseye amd64 [upgradable from: 1.7.28-1~debian.11~bullseye]
dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
docker-ce/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
docker-ce-cli/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
docker-ce-rootless-extras/bullseye 5:28.5.2-1~debian.11~bullseye amd64 [upgradable from: 5:28.5.1-1~debian.11~bullseye]
libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 10/11/2025 23:00
Stop maintenance window: 11/11/2025 02:00

Past Incidents

Wednesday 17th January 2018

No incidents reported

Tuesday 16th January 2018

Managed Server Version 4: graphicsmagick and libgraphicsmagick3 update, scheduled 7 years ago

Package: graphicsmagick
Version: 1.3.16-1.1+deb7u17
CVE ID: CVE-2018-5685
Debian Bug: 887158

libgraphicsmagick3 1.3.16-1.1+deb7u16 was updated to version libgraphicsmagick3_1.3.16-1.1+deb7u17_amd64.deb.
graphicsmagick 1.3.16-1.1+deb7u16 was updated to version graphicsmagick_1.3.16-1.1+deb7u17_amd64.deb.

A vulnerability has been discovered in GraphicsMagick, a collection of
image processing tools, which may result in a denial of service.

CVE-2018-5685
    An infinite loop and application hang has been discovered in the
    ReadBMPImage function (coders/bmp.c). Remote attackers could
    leverage this vulnerability to cause a denial of service via an
    image file with a crafted bit-field mask value.

Managed Server Version 5: gdk-pixbuf update, scheduled 7 years ago

Package: gdk-pixbuf
CVE ID: CVE-2017-1000422

libgdk-pixbuf2.0-0 2.31.1-2+deb8u6 was updated to version 2.31.1-2+deb8u7.
libgdk-pixbuf2.0-common 2.31.1-2+deb8u6 was updated to version 2.31.1-2+deb8u7.

It was discovered that multiple integer overflows in the GIF image loader
in the GDK Pixbuf library may result in denial of service and potentially
the execution of arbitrary code if a malformed image file is opened.

Monday 15th January 2018

Managed Server Version 5: libxml2 update, scheduled 7 years ago

Package: libxml2
CVE ID: CVE-2017-15412
Debian Bug: 883790

libxml2 2.9.1+dfsg1-5+deb8u5 was updated to version 2.9.1+dfsg1-5+deb8u6.

Nick Wellnhofer discovered that certain function calls inside XPath
predicates can lead to use-after-free and double-free errors when
executed by libxml2's XPath engine via an XSLT transformation.

Sunday 14th January 2018

No incidents reported

Saturday 13th January 2018

No incidents reported

Friday 12th January 2018

No incidents reported

Thursday 11th January 2018

No incidents reported