Release 2016_034 (2016-11-17)

Impact

  • The kernel update will trigger a reboot on all machines.

  • Many servers supporting crypto will be restarted due to the libgcrypt update. This affects at least Apache, nginx, PostgreSQL, and SSH.

NixOS platform

  • Update Linux to 4.4.27 (dirty cow) (#24271).

  • Optimize reboot management in scheduled maintenance machinery (#23965, #24189).

  • Deactivate CPU “steal accounting” since it is broken (#23769).

  • Set “out of service” flag in the directory while a VM performs maintenance (#24029).

Gentoo platform

  • Update Linux to 4.4.27 (dirty cow) (#24271).

  • Security update of Qemu from 2.5 to 2.7 (#23965).

  • Security update of MySQL from 5.5.43 to 5.5.53 (#24156).

  • Security update of subversion and serf (#24157, #24158).

  • Security update of libgcrypt from 1.6.3 to 1.7.3 (#24159).

  • Security update of bind (#24155).

  • Update XFS filesystem utilites for improved recovery capabilities (#24288)

  • Optimize reboot management in scheduled maintenance machinery (#23965).

  • Reduce parallelism in mass VM starts/stops for improved VM host stability (#24288).

  • Improve backy server performance (#24295).

  • Fix XFS filesystem issue leading to VM hangs (#24309).

  • Fix Ceph instrumentation bug on VM hosts (#24416).