3.4.13
This documentation does not apply to the most recent version of Splunk. Click here for the latest version.
3.4.13
This release of Splunk contains a fix to the datetime.xml file that resolves a parsing issue for date/timestamps that use a two character year (such as 09 or 10 for 2009 and 2010 respectively). Logs that use a two character year were incorrectly timestamped by Splunk beginning on Jan 1 2010, resulting in events from 2010 not being returned in searches. (SPL-28477, SPL-28913))
This release updates datetime.xml.
For more information about this issue, refer to "2010 timestamps not recognized by Splunk".
Additional issues resolved in this release
- LDAP with anonymous bind and camelcase failsafe user no longer results in no password validation (SPL-28922)
- A memory leak when reloading auth settings has been fixed. (SPL-28185)
- The Message field now displays correctly for Windows Vista Events. (SPL-27456)
- A crash related to the multiFilePipe thread on SunOS has been resolved. (SPL-26919)
- Permalinks now open correctly in Firefox 3.5. (SPL-25900)
- Alert frequency no longer defaults to 1minute. (SPL-16665)
- Windows Event Log data from non-existent log categories no longer is erroneously acquired from the Application log. (SPL-27333, SPL-27466)
This documentation applies to the following versions of Splunk: 3.4.13 , 3.4.14 View the Article History for its revisions.