Release 2016_034 (2016-11-17)

Impact

• The kernel update will trigger a reboot on all machines.

• Many servers supporting crypto will be restarted due to the libgcrypt update. This affects at least Apache, nginx, PostgreSQL, and SSH.

NixOS platform

• Update Linux to 4.4.27 (dirty cow) (#24271).

• Optimize reboot management in scheduled maintenance machinery (#23965, #24189).

• Deactivate CPU “steal accounting” since it is broken (#23769).

• Set “out of service” flag in the directory while a VM performs maintenance (#24029).

Gentoo platform

• Update Linux to 4.4.27 (dirty cow) (#24271).

• Security update of Qemu from 2.5 to 2.7 (#23965).

• Security update of MySQL from 5.5.43 to 5.5.53 (#24156).

• Security update of subversion and serf (#24157, #24158).

• Security update of libgcrypt from 1.6.3 to 1.7.3 (#24159).

• Security update of bind (#24155).

• Update XFS filesystem utilites for improved recovery capabilities (#24288)

• Optimize reboot management in scheduled maintenance machinery (#23965).

• Reduce parallelism in mass VM starts/stops for improved VM host stability (#24288).

• Improve backy server performance (#24295).

• Fix XFS filesystem issue leading to VM hangs (#24309).

• Fix Ceph instrumentation bug on VM hosts (#24416).