All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Does shellshock impact Splunk Enterprise 5.0.4

newbiesplunk
Path Finder
‎10-02-2014 08:24 PM

Hi,
Would like to check whether the Shellshock affect older version of splunk 5.0.4, any document to state that it does not impact this version? thks

Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

MarioM
Motivator
‎10-02-2014 10:24 PM

Here http://www.splunk.com/view/SP-CAAANJN you have more details

View solution in original post

Reply
Solved! Jump to solution

jrodman
Splunk Employee
Splunk Employee
‎10-14-2014 03:18 AM

To answer your versioning question, there is no meaningful difference between 5.0.4 and 5.0.9 that MarioM links in regard to shellshock. Shellshock is a bash vulnerability with a broad attack surface, for which the correct thing to do is to update bash.

For the security conscious user, I would strongly encourage following the current maintenance release of whatever line of product they choose to deploy.

Reply
Solved! Jump to solution
Solution

MarioM
Motivator
‎10-02-2014 10:24 PM

Here http://www.splunk.com/view/SP-CAAANJN you have more details

Reply
Solved! Jump to solution

newbiesplunk
Path Finder
‎10-06-2014 11:23 PM

HI,
I thought i read the article that 5.0.4 is not vulnerable to Heartbleed, can assist to provide the article that 5.0.4 is vulnerable to Heartbleed? thks

0 Karma
Reply
Solved! Jump to solution

jrodman
Splunk Employee
Splunk Employee
‎10-14-2014 03:10 AM

We did not update 5.0.4 in regards to heartbleed. However, since older versions of OpenSSL were not affected by this particular bug, 5.0.x versions were not affected by this particular bug either.

In general, however, 5.0.4 lacks many updates to many other components. I would not select a significantly antiquated release for the security-conscious, which was gkanapathy's point.

0 Karma
Reply
Solved! Jump to solution

gkanapathy
Splunk Employee
Splunk Employee
‎10-02-2014 11:50 PM

5.0.4 is not a current maintenance release, and will certainly have vulnerabilities that are not in the current 5.0.x maintenance release. For example, 5.0.4 is still vulnerable to Heartbleed.

Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...