Release 2025_038 (2025-10-20)¶

Impact¶

Machines will reboot to activate the changed kernel.

Pull upstream NixOS changes, security fixes, and package updates:
- chromedriver: 141.0.7390.54 -> 141.0.7390.76
- chromium: 141.0.7390.54 -> 141.0.7390.76
- element-web: 1.12.0 -> 1.12.1
- gitaly: 18.4.1 -> 18.4.2
- gitlab: 18.4.1 -> 18.4.2
- gitlab-ee: 18.4.1 -> 18.4.2
- gitlab-pages: 18.4.1 -> 18.4.2
- gitlab-runner: 18.3.1 -> 18.4.0
- gitlab-workhorse: 18.4.1 -> 18.4.2
- imagemagick: 7.1.2-3 -> 7.1.2-5
- jetty: 12.1.1 -> 12.1.2
- linuxKernelStable: 6.12.50 -> 6.12.51
- linuxKernelVerify: 6.12.50 -> 6.12.51
- nginxMainline: 1.29.1 -> 1.29.2
- python310: 3.10.18 -> 3.10.19
- python311: 3.11.13 -> 3.11.14
- tomcat10: 10.1.46 -> 10.1.47
- tomcat9: 9.0.109 -> 9.0.110
Improvements to machine maintenance management:
1. Maintenances now automatically time out after the predicted time with some additional buffer. This reduces the risk of maintenances getting stuck without us noticing.
2. Failed maintenances now communicate their stdout/stderr so that those can be quickly looked centrally and are noted in the relevant tickets for supporters to quickly diagnose.
(PL-134087)
fc-maintenance: fix detection whether a reboot is needed based on the kernel package (PL-134119)