Getting Data In

Release schedule for docker images

platformred
Explorer

What is the release schedule for docker images? It doesn't look as if the version of 7.2 that is patched against the 2020 datetime bug (https://docs.splunk.com/Documentation/Splunk/latest/ReleaseNotes/FixDatetimexml2020) has been released as a docker image.

We have 2 weeks to mitigate this Splunk bug, and it's Christmas, which translates to 3 working days remaining. Can we expect a docker image to be released that we can use?

0 Karma

platformred
Explorer

Not an answer to the question, but I have built our own image of the forwarder which is patched against this bug. This is the Dockerfile I used:
FROM splunk/universalforwarder:7.x.x
LABEL maintainer="your@email.here"
COPY datetime.xml /var/opt/splunk/etc/datetime.xml

0 Karma
Get Updates on the Splunk Community!

Now Available: Cisco Talos Threat Intelligence Integrations for Splunk Security Cloud ...

At .conf24, we shared that we were in the process of integrating Cisco Talos threat intelligence into Splunk ...

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Easily Improve Agent Saturation with the Splunk Add-on for OpenTelemetry Collector

Agent Saturation What and Whys In application performance monitoring, saturation is defined as the total load ...