Issue Summary:
We have identified that Security Package (SPACK) 2259, released on June 2, 2025, may introduce instability on certain VOS nodes, potentially causing them to go offline.

Affected Versions:

• VOS 21.2.x

• VOS 21.3.x

Impact Scope:
This issue affects only VOS nodes running versions 21.2.x or 21.3.x that have an IPS (vulnerability profile) configuration enabled.

Recommended Action / Remediation Steps:

To mitigate the impact, SPACK 2259 has been removed from the update repository. If your affected VOS nodes have auto-update enabled and are currently running SPACK 2259, please proceed with one of the following remediation options:

Option 1: Automated Remediation via Director

1. Copy the attached script spack_revert.sh to the /var/tmp/ directory on the Director.

2. Make the script executable:

   chmod a+x spack_revert.sh
   

3. Run the script:

   bash -x ./spack_revert.sh
   

4. After execution, check for a file named at /var/tmp/unreachable_ips.txt for unreachable devices.

5. Re-run the script to attempt recovery of previously unreachable devices.

6. For any nodes that remain unreachable, proceed with Option 2 below.

Option 2: Manual Remediation on Individual VOS Nodes

If the device is not reachable from the Director, use SSH (out-of-band) or console access to connect directly to the VOS node.

If services are continuously restarting or have stopped, run:

vsh on-vsmd-stop nothing 
vsh start 
cd /opt/versa/scripts 
sudo ./spack_revert.py 
vsh on-vsmd-stop default 
vsh restart

If services are stable, run:

cd /opt/versa/scripts 
sudo ./spack_revert.py

If you require assistance with these steps or have any questions regarding your deployment, please don’t hesitate to contact our support team.

We apologize for the inconvenience and appreciate your prompt attention to this matter.