Release notes for the Splunk Add-on for Tomcat
About this release
The Tomcat add-on log4j library was updated to version 2.16 in December 2021. Since then log4j has released version 2.17.1 which addresses additional vulnerabilities. These vulnerabilities are defined as moderate severity and the add-on does not use the affected code path. However, this add-on will be updated to the recommended version of 2.17.1 in an upcoming release.
Version 3.0.2 of the Splunk Add-on for Tomcat was released on December 17, 2021.
Version 3.0.2 of the Splunk Add-on for Tomcat is compatible with the following software, CIM versions, and platforms.
|Splunk software versions||8.0.x, 8.1.x, 8.2.x|
|Platforms||Windows and Linux|
|Vendor Products||Apache Tomcat 8.0, 8.5.61, 9.0.41, and 10.0.12|
The field alias functionality is compatible with the current version of this add-on. The current version of this add-on does not support older field alias configurations.
For more information about the field alias configuration change, refer to the Splunk Enterprise Release Notes.
- Upgraded the log4j library from version 2.15.0 to 2.16.0.
- Fixed a security vulnerability found in the log4j library
Version 3.0.2 fixed a security vulnerability found in the log4j library.
Version 3.0.2 of the Splunk Add-on for Tomcat has the following fixed issues.
Version 3.0.2 of the Splunk Add-on for Tomcat has the following known issues.
Third-party software attributions
Some of the components included in this add-on are licensed under free or open source licenses. We wish to thank the contributors to those projects.
A complete listing of third-party software information for this add-on is available as a PDF file for download:
Splunk Add-on for Tomcat third-party software credits.
Source types for the Splunk Add-on for Tomcat
Release history for the Splunk Add-on for Tomcat
This documentation applies to the following versions of Splunk® Supported Add-ons: released