Splunk® Enterprise Security

Release Notes

Acrobat logo Download manual as PDF


This documentation does not apply to the most recent version of Splunk® Enterprise Security. For documentation on the most recent version, go to the latest release.
Acrobat logo Download topic as PDF

Fixed Issues

The following issues have been resolved for this version of Splunk Enterprise Security.

Issue number Description
SOLNESS-9383 Remove the macro from eventtype=notable as an event type definition does not support the use of macros.
SOLNESS-9384 A default_partitions limit causes "no results found" when performing a "stats count" search.
SOLNESS-9385 Threat Intelligence: Macro failures on Splunk Enterprise 6.4.
SOLNESS-9386 Threat Intelligence: Threat "Lookup Gen" searches should run after an upgrade.
SOLNESS-9387 Threat Gen - zipexpand threat matches does not properly layer on weight.
SOLNESS-9388 Threat - Watchlisted Events - Rule: uses the non-streaming command "table" early in the pipeline.
SOLNESS-9390 Timeline: After adding notable event from checkbox on Incident review errors in console.
SOLNESS-9394 Incident Review: events not showing when malformed event exists.
SOLNESS-9397 Typo on the Configuration page.
SOLNESS-9398 Suppress warnings about insufficient system specs on cloud.
SOLNESS-9488 Content Management: use the correct email subject settings
Last modified on 03 June, 2016
PREVIOUS
Release Notes for Splunk Enterprise Security 		  NEXT
Known Issues

This documentation applies to the following versions of Splunk® Enterprise Security: 4.1.1

Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters