Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

When is Log4j 2.17 availability for Splunk Enterprise 8.1?

FrancoiseMathy
New Member
‎03-15-2022 05:50 AM

Hello, 

As found on "Splunk Security Advisory for Apache Log4j", I could read that "Unless CVE-2021-45105 or CVE-2021-44832 increase in severity, Splunk will address these vulnerabilities as part of the next regular maintenance release of each affected product. Customers also have the option to remove Log4j Version 2 from Splunk Enterprise out of an abundance of caution. "

CVE-2021-44832 concerns a vulnerability found in version 2.17.
Thus as far as I understand, the vulnerability of Log4j 2.17 will be solved in next maintenance release.

I am running Splunk Enterprise 8.1.7.2 and the version of Log4j in it is 2.16.  This version of Log4j has been deleted.  But my management is asking when the version 2.17 will be available. I believe in next maintenance release.

Thus can you please tell me when the next maintenance release will be released for Splunk Enterprise 8.1? Thanks

Labels (1)
Labels
Tags (2)
0 Karma
Reply

FrancoiseMathy
New Member
‎03-15-2022 07:53 AM

Thanks for your answer Stefanie.
But there is no plan to include version 2.17 of Log4j in version 8.1?

 

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎03-16-2022 01:25 AM
Hi
this has fixed also 8.1.8 as said here https://docs.splunk.com/Documentation/Splunk/8.1.9/ReleaseNotes/MeetSplunk#What.27s_New_in_8.1.8
r. Ismo
0 Karma
Reply

Stefanie
Builder
‎03-15-2022 06:00 AM

Splunk Version 8.2.5 has been released for some time now. It addresses the log4j issue.

What's New in 8.2.5
Splunk Enterprise 8.2.5 was released on February 16, 2022. This release includes version 2.17.1 of Apache Log4j. It also resolves the issues described in Fixed issues.

https://docs.splunk.com/Documentation/Splunk/8.2.5/ReleaseNotes/MeetSplunk 

Reply
Get Updates on the Splunk Community!

Database Performance Sidebar Panel Now on APM Database Query Performance & Service ...

We’ve streamlined the troubleshooting experience for database-related service issues by adding a database ...

IM Landing Page Filter - Now Available

We’ve added the capability for you to filter across the summary details on the main Infrastructure Monitoring ...

Dynamic Links from Alerts to IM Navigators - New in Observability Cloud

Splunk continues to improve the troubleshooting experience in Observability Cloud with this latest enhancement ...