Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.

All systems are operational

Core

Cluster

Operational

Network

Operational

DNS

Operational

Cockpit

Operational

Domain Registration

Operational

Managed Server

Version 10

Operational

Version 9

Operational

Version 8

Operational

Version 7

Operational

Version 6

Operational

Version 5

Operational

Version 4

Operational

Version 3

Operational

Managed Applications

Matomo

Operational

Nextcloud

Operational

Mailserver

Operational

Discourse

Operational

GitLab

Operational

Scheduled Maintenance

Elasticsearch 8.19.7

We will update Elasticsearch to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Kibana 8.19.7

We will update Kibana to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

GitLab Runner Configuration Update

We will update our GitLab Runner configuration.

Reference: oe/saas/gitlab-runner#76

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Keycloak 26.4.5

We will update Keycloak to version 26.4.5.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Managed Server 10: Debian Updates

We will update the following packages to the latest version.

base-files/stable 13.8+deb13u2 amd64 [upgradable from: 13.8+deb13u1]
console-setup-linux/stable 1.242~deb13u1 all [upgradable from: 1.240]
console-setup/stable 1.242~deb13u1 all [upgradable from: 1.240]
curl/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
distro-info-data/stable 0.66+deb13u1 all [upgradable from: 0.66]
imagemagick-7-common/stable 8:7.1.1.43+dfsg1-1+deb13u3 all [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
keyboard-configuration/stable 1.242~deb13u1 all [upgradable from: 1.240]
libapache2-mod-security2/stable 2.9.11-1+deb13u1 amd64 [upgradable from: 2.9.11-1]
libcommons-lang3-java/stable 3.17.0-1+deb13u1 all [upgradable from: 3.17.0-1]
libcommons-lang-java/stable 2.6-10+deb13u1 all [upgradable from: 2.6-10]
libcups2t64/stable 2.4.10-3+deb13u2 amd64 [upgradable from: 2.4.10-3+deb13u1]
libcurl3t64-gnutls/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
libcurl4-openssl-dev/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
libcurl4t64/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
libldb2/stable 2:2.11.0+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.11.0+samba4.22.4+dfsg-1~deb13u1]
libmagickcore-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
libmagickwand-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
libnss-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
libpam-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
libpam-wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
libsmbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
libssh-4/stable 0.11.2-1+deb13u1 amd64 [upgradable from: 0.11.2-1]
libssl3t64/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
libssl-dev/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
libsystemd0/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
libsystemd-shared/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
libtalloc2/stable 2:2.4.3+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.4.3+samba4.22.4+dfsg-1~deb13u1]
libtdb1/stable 2:1.4.13+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:1.4.13+samba4.22.4+dfsg-1~deb13u1]
libtevent0t64/stable 2:0.16.2+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:0.16.2+samba4.22.4+dfsg-1~deb13u1]
libudev1/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
libwbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
libwtmpdb0/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
libxml2/stable 2.12.7+dfsg+really2.9.14-2.1+deb13u2 amd64 [upgradable from: 2.12.7+dfsg+really2.9.14-2.1+deb13u1]
linux-image-amd64/stable 6.12.57-1 amd64 [upgradable from: 6.12.48-1]
linux-libc-dev/stable 6.12.57-1 all [upgradable from: 6.12.48-1]
lnav/stable 0.12.4-1+deb13u1 amd64 [upgradable from: 0.12.4-1]
monitoring-plugins-basic/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
monitoring-plugins-common/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
monitoring-plugins/stable 2.4.0-3+deb13u1 all [upgradable from: 2.4.0-3]
monitoring-plugins-standard/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
openssl-provider-legacy/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
openssl/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
postfix/stable 3.10.5-1~deb13u1 amd64 [upgradable from: 3.10.4-1~deb13u1]
proftpd-core/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
proftpd-mod-crypto/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
proftpd-mod-wrap/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
qemu-guest-agent/stable 1:10.0.6+ds-0+deb13u2 amd64 [upgradable from: 1:10.0.3+ds-0+deb13u1]
ruby-sys-filesystem/stable 1.4.4-1+deb13u1 all [upgradable from: 1.4.4-1]
samba-libs/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
systemd-sysv/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
systemd-timesyncd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
udev/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
x11-common/stable 1:7.7+24+deb13u1 all [upgradable from: 1:7.7+24]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 9: Debian Updates

We will update the following packages to the latest version.

linux-compiler-gcc-12-x86/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
linux-headers-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
linux-image-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
linux-kbuild-6.1/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
linux-libc-dev/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
lxd-client/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]
lxd/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 8: Debian Updates

We will update the following packages to the latest version.

bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
blackfire/any 2:2.29.4 amd64 [upgradable from: 2:2.29.3]
dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
libarchive13/oldoldstable-security 3.4.3-2+deb11u3 amd64 [upgradable from: 3.4.3-2+deb11u2]
libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Gotenberg 8.25.0

We will update Gotenberg to version 8.25.0.

Reference: #25

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Past Incidents

Tuesday 19th June 2018

Mailserver Maintanance, scheduled 7 years ago

We perform software updates on our customer mail servers. We expect a downtime of ~5 minutes

New features / Changes:

php, sogo and dovecot updates
small bugfixes

Start maintenance window: 19.06.2018 00:00 CEST
Stop maintenance window: 19.06.2018 01:00 CEST

Monday 18th June 2018

New Cockpit Version: Update DNS zone when creating a server or editing the servers network interfaces

Features

Insert forward dns entry for the servers fqdn and *.fqdn
Insert reverse dns entry for all network interfaces
Use of a local settings file with values from GitLab
Every Customer has now its own subdomain under opsserver.ch
When registering a new Domain the default nameservers are now the ones from the dns zone template

Bugs

Visually join DNS Labels with the same value and type
Renaming an existing DNS Label doesn't duplicate it anymore
Fixed a typo
Remove the members field when changing a websites type from proxy to something else

Sunday 17th June 2018

No incidents reported

Saturday 16th June 2018

No incidents reported

Friday 15th June 2018

No incidents reported

Thursday 14th June 2018

No incidents reported

Wednesday 13th June 2018

Managed Server Version 5: perl updates, scheduled 7 years ago

Jakub Wilk discovered a directory traversal flaw in the Archive::Tar module, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted tar archive. CVE-2018-12015

We have updated perl to the latest version.

libperl5.20/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
perl/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
perl-base/oldstable 5.20.2-3+deb8u11 amd64 [upgradable from: 5.20.2-3+deb8u10]
perl-modules/oldstable 5.20.2-3+deb8u11 all [upgradable from: 5.20.2-3+deb8u10]

Managed Server Version 5: nodejs updates, scheduled 7 years ago

Fixes Denial of Service vulnerability where calling Buffer.fill() could hang CVE-2018-7167

We have updated nodejs 6 to the latest version.

nodejs/unknown 6.14.3-1nodesource1 amd64 [upgradable from: 6.14.2-1nodesource1]