https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669769#M13430 <P>Hi&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/262789">@Ka21</a>,</P><P>Splunk periodically releases updates to address vulnerabilities in libraries&nbsp;<EM>shipped with Splunk products</EM>. Browse to &lt;<A href="https://advisory.splunk.com/" target="_self">https://advisory.splunk.com/</A>&gt; to review bulletins labeled "Third Party Package Updates in Splunk Enterprise" and "Splunk Universal Forwarder Third-Party Updates."</P><P>For November 2023:</P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1105" target="_blank" rel="noopener">November 2023 Third Party Package updates in Splunk Enterprise</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1107" target="_blank" rel="noopener">November 2023 Splunk Universal Forwarder Third-Party Updates</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1102" target="_blank" rel="noopener">Third Party Package Update in Splunk Add-on for Google Cloud Platform</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1101" target="_blank" rel="noopener">Third Party Package Update in Splunk Add-on for Amazon Web Services</A></P><P>Re: Java, you'll need to review individual Java-based apps and add-ons--Splunk ITSI, Splunk DB Connect, etc.--for compatibility and upgrade the JRE as needed.</P> Sun, 26 Nov 2023 23:38:46 GMT tscroggins 2023-11-26T23:38:46Z https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669737#M13423 <P>The below Vulnerabilities reported in linux servers and let me know if any impact on Splunk application, if we remediate the vulnerabilities based on solution provided.<BR /><BR /></P><TABLE width="715"><TBODY><TR><TD width="715">Amazon Linux 2 : polkit (ALAS-2022-1745)</TD></TR><TR><TD>Amazon Linux 2 : libgcrypt (ALAS-2022-1769)</TD></TR><TR><TD>Amazon Linux 2 : gzip, xz (ALAS-2022-1782)</TD></TR><TR><TD>Amazon Linux 2 : vim (ALAS-2022-1829)</TD></TR><TR><TD>Amazon Linux 2 : zlib (ALAS-2022-1849)</TD></TR><TR><TD>Amazon Linux 2 : aide (ALAS-2022-1850)</TD></TR><TR><TD>Amazon Linux 2 : pcre2 (ALAS-2022-1871)</TD></TR><TR><TD>Amazon Linux 2 : e2fsprogs (ALAS-2022-1884)</TD></TR><TR><TD>Amazon Linux 2 : sqlite (ALAS-2023-1911)</TD></TR><TR><TD>Amazon Linux 2 : libtasn1 (ALAS-2023-1908)</TD></TR><TR><TD>Amazon Linux 2 : freetype (ALAS-2023-1909)</TD></TR><TR><TD>Amazon Linux 2 : libpng (ALAS-2023-1904)</TD></TR><TR><TD>Amazon Linux 2 : python-lxml (ALAS-2023-1956)</TD></TR><TR><TD>Amazon Linux 2 : nss-util (ALAS-2023-1954)</TD></TR><TR><TD>Amazon Linux 2 : nss-softokn (ALAS-2023-1955)</TD></TR><TR><TD>Amazon Linux 2 : python (ALAS-2023-1980)</TD></TR><TR><TD>Amazon Linux 2 : cpio (ALAS-2023-1972)</TD></TR><TR><TD>Amazon Linux 2 : curl (ALAS-2023-1986)</TD></TR><TR><TD>Amazon Linux 2 : nss (ALAS-2023-1992)</TD></TR><TR><TD>Amazon Linux 2 : babel (ALAS-2023-2010)</TD></TR><TR><TD>Amazon Linux 2 : systemd (ALAS-2023-2004)</TD></TR><TR><TD>Amazon Linux 2 : jasper (ALAS-2023-2018)</TD></TR><TR><TD>Amazon Linux 2 : gd (ALAS-2023-2044)</TD></TR><TR><TD>Amazon Linux 2 : perl (ALAS-2023-2034)</TD></TR><TR><TD>Amazon Linux 2 : libwebp (ALAS-2023-2048)</TD></TR><TR><TD>Amazon Linux 2 : mariadb (ALAS-2023-2057)</TD></TR><TR><TD>Amazon Linux 2 : sysstat (ALAS-2023-2068)</TD></TR><TR><TD>Amazon Linux 2 : rsync (ALAS-2023-2074)</TD></TR><TR><TD>Amazon Linux 2 : dnsmasq (ALAS-2023-2069)</TD></TR><TR><TD>Amazon Linux 2 : glusterfs (ALAS-2023-2071)</TD></TR><TR><TD>Amazon Linux 2 : pcre (ALAS-2023-2082)</TD></TR><TR><TD>Amazon Linux 2 : git (ALAS-2023-2072)</TD></TR><TR><TD>Amazon Linux 2 : libfastjson (ALAS-2023-2079)</TD></TR><TR><TD>Amazon Linux 2 : openldap (ALAS-2023-2095)</TD></TR><TR><TD>Amazon Linux 2 : perl-HTTP-Tiny (ALAS-2023-2093)</TD></TR><TR><TD>Amazon Linux 2 : glib2 (ALAS-2023-2107)</TD></TR><TR><TD>Amazon Linux 2 : perl-Pod-Perldoc (ALAS-2023-2094)</TD></TR><TR><TD>Amazon Linux 2 : ncurses (ALAS-2023-2096)</TD></TR><TR><TD>Amazon Linux 2 : squashfs-tools (ALAS-2023-2152)</TD></TR><TR><TD>Amazon Linux 2 : fribidi (ALAS-2023-2116)</TD></TR><TR><TD>Amazon Linux 2 : tcpdump (ALAS-2023-2119)</TD></TR><TR><TD>Amazon Linux 2 : libX11 (ALAS-2023-2129)</TD></TR><TR><TD>Amazon Linux 2 : c-ares (ALAS-2023-2127)</TD></TR><TR><TD>Amazon Linux 2 : zstd (ALAS-2023-2140)</TD></TR><TR><TD>Amazon Linux 2 : SDL2 (ALAS-2023-2162)</TD></TR><TR><TD>Amazon Linux 2 : bluez (ALAS-2023-2167)</TD></TR><TR><TD>Amazon Linux 2 : avahi (ALAS-2023-2175)</TD></TR><TR><TD>Amazon Linux 2 : nghttp2 (ALAS-2023-2180)</TD></TR><TR><TD>Amazon Linux 2 : ca-certificates (ALAS-2023-2224)</TD></TR><TR><TD>Amazon Linux 2 : amazon-ssm-agent (ALAS-2023-2238)</TD></TR><TR><TD>Amazon Linux 2 : shadow-utils (ALAS-2023-2247)</TD></TR><TR><TD>Amazon Linux 2 : libssh2 (ALAS-2023-2257)</TD></TR><TR><TD>Amazon Linux 2 : libjpeg-turbo (ALAS-2023-2254)</TD></TR><TR><TD>Amazon Linux 2 : expat (ALAS-2023-2280)</TD></TR><TR><TD>Amazon Linux 2 : kernel (ALAS-2023-2264)</TD></TR><TR><TD>Amazon Linux 2 : flac (ALAS-2023-2283)</TD></TR><TR><TD>Amazon Linux 2 : python-pillow (ALAS-2023-2286)</TD></TR><TR><TD>Amazon Linux 2 : bind (ALAS-2023-2273)</TD></TR><TR><TD>Oracle Java JRE Unsupported Version Detection (Unix)</TD></TR></TBODY></TABLE> Sun, 26 Nov 2023 13:26:26 GMT https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669737#M13423 Ka21 2023-11-26T13:26:26Z https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669769#M13430 <P>Hi&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/262789">@Ka21</a>,</P><P>Splunk periodically releases updates to address vulnerabilities in libraries&nbsp;<EM>shipped with Splunk products</EM>. Browse to &lt;<A href="https://advisory.splunk.com/" target="_self">https://advisory.splunk.com/</A>&gt; to review bulletins labeled "Third Party Package Updates in Splunk Enterprise" and "Splunk Universal Forwarder Third-Party Updates."</P><P>For November 2023:</P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1105" target="_blank" rel="noopener">November 2023 Third Party Package updates in Splunk Enterprise</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1107" target="_blank" rel="noopener">November 2023 Splunk Universal Forwarder Third-Party Updates</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1102" target="_blank" rel="noopener">Third Party Package Update in Splunk Add-on for Google Cloud Platform</A></P><P><A class="" href="https://advisory.splunk.com/advisories/SVD-2023-1101" target="_blank" rel="noopener">Third Party Package Update in Splunk Add-on for Amazon Web Services</A></P><P>Re: Java, you'll need to review individual Java-based apps and add-ons--Splunk ITSI, Splunk DB Connect, etc.--for compatibility and upgrade the JRE as needed.</P> Sun, 26 Nov 2023 23:38:46 GMT https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669769#M13430 tscroggins 2023-11-26T23:38:46Z https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669778#M13431 <P>Hi</P><P>it's hard to say if anyone of those is directly affected to splunk, but usually it's a best practices to keep your OS and also other products up to date to avoid any security issues. You already have found Splunk's own security issue page which also should fulfil as soon as possible.</P><P>r. Ismo</P> Mon, 27 Nov 2023 07:33:20 GMT https://community.splunk.com/t5/Installation/Vulnerability-Reported-in-linux-server-which-Splunk-application/m-p/669778#M13431 isoutamo 2023-11-27T07:33:20Z