Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
Elasticsearch 8.19.7

We will update Elasticsearch to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Kibana 8.19.7

We will update Kibana to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

GitLab Runner Configuration Update

We will update our GitLab Runner configuration.

Reference: oe/saas/gitlab-runner#76

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Keycloak 26.4.5

We will update Keycloak to version 26.4.5.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Managed Server 10: Debian Updates

We will update the following packages to the latest version.

  • base-files/stable 13.8+deb13u2 amd64 [upgradable from: 13.8+deb13u1]
  • console-setup-linux/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • console-setup/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • curl/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • distro-info-data/stable 0.66+deb13u1 all [upgradable from: 0.66]
  • imagemagick-7-common/stable 8:7.1.1.43+dfsg1-1+deb13u3 all [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • keyboard-configuration/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • libapache2-mod-security2/stable 2.9.11-1+deb13u1 amd64 [upgradable from: 2.9.11-1]
  • libcommons-lang3-java/stable 3.17.0-1+deb13u1 all [upgradable from: 3.17.0-1]
  • libcommons-lang-java/stable 2.6-10+deb13u1 all [upgradable from: 2.6-10]
  • libcups2t64/stable 2.4.10-3+deb13u2 amd64 [upgradable from: 2.4.10-3+deb13u1]
  • libcurl3t64-gnutls/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4-openssl-dev/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4t64/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libldb2/stable 2:2.11.0+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.11.0+samba4.22.4+dfsg-1~deb13u1]
  • libmagickcore-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libmagickwand-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libnss-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libsmbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libssh-4/stable 0.11.2-1+deb13u1 amd64 [upgradable from: 0.11.2-1]
  • libssl3t64/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libssl-dev/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libsystemd0/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libsystemd-shared/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libtalloc2/stable 2:2.4.3+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.4.3+samba4.22.4+dfsg-1~deb13u1]
  • libtdb1/stable 2:1.4.13+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:1.4.13+samba4.22.4+dfsg-1~deb13u1]
  • libtevent0t64/stable 2:0.16.2+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:0.16.2+samba4.22.4+dfsg-1~deb13u1]
  • libudev1/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libwbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libwtmpdb0/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libxml2/stable 2.12.7+dfsg+really2.9.14-2.1+deb13u2 amd64 [upgradable from: 2.12.7+dfsg+really2.9.14-2.1+deb13u1]
  • linux-image-amd64/stable 6.12.57-1 amd64 [upgradable from: 6.12.48-1]
  • linux-libc-dev/stable 6.12.57-1 all [upgradable from: 6.12.48-1]
  • lnav/stable 0.12.4-1+deb13u1 amd64 [upgradable from: 0.12.4-1]
  • monitoring-plugins-basic/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins-common/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins/stable 2.4.0-3+deb13u1 all [upgradable from: 2.4.0-3]
  • monitoring-plugins-standard/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • openssl-provider-legacy/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • openssl/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • postfix/stable 3.10.5-1~deb13u1 amd64 [upgradable from: 3.10.4-1~deb13u1]
  • proftpd-core/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-crypto/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-wrap/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • qemu-guest-agent/stable 1:10.0.6+ds-0+deb13u2 amd64 [upgradable from: 1:10.0.3+ds-0+deb13u1]
  • ruby-sys-filesystem/stable 1.4.4-1+deb13u1 all [upgradable from: 1.4.4-1]
  • samba-libs/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-sysv/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-timesyncd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • udev/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • x11-common/stable 1:7.7+24+deb13u1 all [upgradable from: 1:7.7+24]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version.

  • linux-compiler-gcc-12-x86/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-headers-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-image-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-kbuild-6.1/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-libc-dev/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • lxd-client/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]
  • lxd/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

  • bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • blackfire/any 2:2.29.4 amd64 [upgradable from: 2:2.29.3]
  • dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
  • libarchive13/oldoldstable-security 3.4.3-2+deb11u3 amd64 [upgradable from: 3.4.3-2+deb11u2]
  • libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Gotenberg 8.25.0

We will update Gotenberg to version 8.25.0.

Reference: #25

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Past Incidents

Tuesday 19th June 2018

Mailserver Maintanance, scheduled 7 years ago

We perform software updates on our customer mail servers. We expect a downtime of ~5 minutes

New features / Changes:

  • php, sogo and dovecot updates
  • small bugfixes

Start maintenance window: 19.06.2018 00:00 CEST
Stop maintenance window: 19.06.2018 01:00 CEST

Wednesday 13th June 2018

Managed Server Version 5: perl updates, scheduled 7 years ago

Jakub Wilk discovered a directory traversal flaw in the Archive::Tar module, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted tar archive. CVE-2018-12015

We have updated perl to the latest version.

  • libperl5.20/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
  • perl/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
  • perl-base/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
  • perl-modules/oldstable 5.20.2-3+deb8u11 all [upgradable from: 5.20.2-3+deb8u10]
Managed Server Version 5: nodejs updates, scheduled 7 years ago

Fixes Denial of Service vulnerability where calling Buffer.fill() could hang CVE-2018-7167

We have updated nodejs 6 to the latest version.

  • nodejs/unknown 6.14.3-1nodesource1 amd64 [upgradable from: 6.14.2-1nodesource1]

Tuesday 12th June 2018

No incidents reported

Monday 11th June 2018

Managed Server Version 5: openjdk7 update, scheduled 7 years ago

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in denial of service, sandbox bypass, execution of arbitrary code or bypass of JAR signature validation. DSA 4225-1

We have updated openjdk7 to the latest version.

  • openjdk-7-jdk/oldstable 7u181-2.6.14-1~deb8u1 amd64 [upgradable from: 7u171-2.6.13-1~deb8u1]
  • openjdk-7-jre/oldstable 7u181-2.6.14-1~deb8u1 amd64 [upgradable from: 7u171-2.6.13-1~deb8u1]
  • openjdk-7-jre-headless/oldstable 7u181-2.6.14-1~deb8u1 amd64 [upgradable from: 7u171-2.6.13-1~deb8u1]

Sunday 10th June 2018

No incidents reported

Saturday 9th June 2018

No incidents reported

Friday 8th June 2018

No incidents reported

Thursday 7th June 2018

Managed Server Version 5: memcached update, scheduled 7 years ago

Several vulnerabilities were discovered in memcached, a high-performance memory object caching system.
CVE-2017-9951, CVE-2018-1000115, CVE-2018-1000127

We have updated memcached to the latest version.

  • memcached/oldstable 1.4.21-1.1+deb8u2 amd64 [upgradable from: 1.4.21-1.1+deb8u1]