Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
Elasticsearch 8.19.7

We will update Elasticsearch to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Kibana 8.19.7

We will update Kibana to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

GitLab Runner Configuration Update

We will update our GitLab Runner configuration.

Reference: oe/saas/gitlab-runner#76

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Keycloak 26.4.5

We will update Keycloak to version 26.4.5.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Managed Server 10: Debian Updates

We will update the following packages to the latest version.

  • base-files/stable 13.8+deb13u2 amd64 [upgradable from: 13.8+deb13u1]
  • console-setup-linux/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • console-setup/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • curl/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • distro-info-data/stable 0.66+deb13u1 all [upgradable from: 0.66]
  • imagemagick-7-common/stable 8:7.1.1.43+dfsg1-1+deb13u3 all [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • keyboard-configuration/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • libapache2-mod-security2/stable 2.9.11-1+deb13u1 amd64 [upgradable from: 2.9.11-1]
  • libcommons-lang3-java/stable 3.17.0-1+deb13u1 all [upgradable from: 3.17.0-1]
  • libcommons-lang-java/stable 2.6-10+deb13u1 all [upgradable from: 2.6-10]
  • libcups2t64/stable 2.4.10-3+deb13u2 amd64 [upgradable from: 2.4.10-3+deb13u1]
  • libcurl3t64-gnutls/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4-openssl-dev/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4t64/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libldb2/stable 2:2.11.0+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.11.0+samba4.22.4+dfsg-1~deb13u1]
  • libmagickcore-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libmagickwand-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libnss-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libsmbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libssh-4/stable 0.11.2-1+deb13u1 amd64 [upgradable from: 0.11.2-1]
  • libssl3t64/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libssl-dev/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libsystemd0/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libsystemd-shared/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libtalloc2/stable 2:2.4.3+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.4.3+samba4.22.4+dfsg-1~deb13u1]
  • libtdb1/stable 2:1.4.13+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:1.4.13+samba4.22.4+dfsg-1~deb13u1]
  • libtevent0t64/stable 2:0.16.2+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:0.16.2+samba4.22.4+dfsg-1~deb13u1]
  • libudev1/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libwbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libwtmpdb0/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libxml2/stable 2.12.7+dfsg+really2.9.14-2.1+deb13u2 amd64 [upgradable from: 2.12.7+dfsg+really2.9.14-2.1+deb13u1]
  • linux-image-amd64/stable 6.12.57-1 amd64 [upgradable from: 6.12.48-1]
  • linux-libc-dev/stable 6.12.57-1 all [upgradable from: 6.12.48-1]
  • lnav/stable 0.12.4-1+deb13u1 amd64 [upgradable from: 0.12.4-1]
  • monitoring-plugins-basic/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins-common/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins/stable 2.4.0-3+deb13u1 all [upgradable from: 2.4.0-3]
  • monitoring-plugins-standard/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • openssl-provider-legacy/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • openssl/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • postfix/stable 3.10.5-1~deb13u1 amd64 [upgradable from: 3.10.4-1~deb13u1]
  • proftpd-core/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-crypto/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-wrap/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • qemu-guest-agent/stable 1:10.0.6+ds-0+deb13u2 amd64 [upgradable from: 1:10.0.3+ds-0+deb13u1]
  • ruby-sys-filesystem/stable 1.4.4-1+deb13u1 all [upgradable from: 1.4.4-1]
  • samba-libs/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-sysv/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-timesyncd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • udev/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • x11-common/stable 1:7.7+24+deb13u1 all [upgradable from: 1:7.7+24]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version.

  • linux-compiler-gcc-12-x86/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-headers-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-image-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-kbuild-6.1/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-libc-dev/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • lxd-client/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]
  • lxd/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

  • bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • blackfire/any 2:2.29.4 amd64 [upgradable from: 2:2.29.3]
  • dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
  • libarchive13/oldoldstable-security 3.4.3-2+deb11u3 amd64 [upgradable from: 3.4.3-2+deb11u2]
  • libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Gotenberg 8.25.0

We will update Gotenberg to version 8.25.0.

Reference: #25

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Past Incidents

Thursday 7th June 2018

Managed Server Version 5: memcached update, scheduled 7 years ago

Several vulnerabilities were discovered in memcached, a high-performance memory object caching system.
CVE-2017-9951, CVE-2018-1000115, CVE-2018-1000127

We have updated memcached to the latest version.

  • memcached/oldstable 1.4.21-1.1+deb8u2 amd64 [upgradable from: 1.4.21-1.1+deb8u1]

Wednesday 6th June 2018

No incidents reported

Tuesday 5th June 2018

No incidents reported

Monday 4th June 2018

Managed Server Version 5: fix Letsencrypt dependency problem

It was not possible to activate Letsencrypt on a already existing websites under some circumstances. We where finally able to reproduce and fix this problem for good.

Closes #335

Managed Server Version 5: Redis service added

By now, we used Redis by installing redis-server through base::packages. This works fine as long as Redis is not considered a important part of your setup. As we have a project where Redis is becoming important more and more, we implemented the redis service, which will not only install redis, but also make sure the daemon is running and the service is monitored locally through Monit and in our global monitoring as well.

For current setups, no change is required, however we will approach all affected customers over the next few days to explain this change in more detail.

Closes #333

Sunday 3rd June 2018

No incidents reported

Saturday 2nd June 2018

No incidents reported

Friday 1st June 2018

No incidents reported