This documentation does not apply to the most recent version of Splunk® Phantom (Legacy).
For documentation on the most recent version, go to the latest release.
Fixed Issues in this release of Splunk Phantom
Splunk Phantom 4.10.6 was released on August 04, 2021. This release includes fixes for the following issues.
| Date resolved | Issue number | Description |
|---|---|---|
| 2021-07-26 | PPS-23462 | Playbook API collect_from_contains fails to return data from user-defined and regular CEF types |
| 2021-07-21 | PPS-24263 | Splunk Phantom cannot index large events into Splunk Enterprise for search. |
| 2021-07-26 | PPS-24737 | SAML metadata link is not properly populating the idp argument. |
| 2021-07-21 | PPS-25004 | Update nginx configuration to remove support for TLSv1.1. |
| 2021-07-27 | PPS-25038 | Boolean parameter 'Verify server certificate' is treated as 'None' by the Splunk Phantom platform. |
| 2021-07-27 | PPS-25216 | When using the "Related Event" item from the artifact info screen in Investigation, produces error 'indicator_value 404 Not found' then displays a never-ending 'loading history' message. |
| 2021-07-27 | PPS-25246 | Filter block and decision block do not return correct result when called multiple times on the same chain of action results. |
| 2021-06-14 | PPS-25250 | In the Investigation screen, the Action overlay loads very slowly, and is not paginated |
| 2021-06-21 | PPS-25327 | Due to a race condition, a playbook commit can capture changes not tied to the playbook. |
| 2021-06-22 | PPS-25398 | The phantom.condition API should only substring match RHS artifact values when they come from the fromEmail or toEmail CEF fields. |
| 2021-05-22 | PPS-25507 | The ibackup tool incorrectly identifies space requirements. |
| 2021-06-21 | PPS-25651 | The ibackup tool fails to generate consecutive incremental backups. |
| 2021-06-21 | PPS-25665 | The ibackup tool's restore function does not restore Splunk Enterprise portion of license key. |
| 2021-07-27 | PPS-25772 | Non-default App numeric asset configurations are stored as strings. |
| 2021-07-01 | PPS-25847 | Automation is not run when adding duplicate artifact from same batch/post. |
| 2021-07-07 | PPS-25852 | Container deletion fails if Files contains duplicate files. |
| Date resolved | Issue number | Description |
|---|---|---|
| 2021-07-23 | PSAAS-2126 | REST API rest/artifact returns empty cef_type for defaults CEFs |
| 2021-07-22 | PSAAS-2588, PSAAS-2691 | The platform unable to properly kill off a runner, causing playbooks to get stuck running if playbook killed by timeout |
| 2021-07-21 | PSAAS-2405, PSAAS-2690 | DECIDED daemon hangs after all the actions in the parent and child playbooks are finished |
| 2021-07-14 | PSAAS-2238 | The setup_warm_standby script fails with an 'ImportError' when run from directories where the user does not have permissions. |
| 2021-07-14 | PSAAS-2186, MALT-2266 | Events widgets data does not match analyst queue data |
| 2021-07-14 | PSAAS-2507 | After upgrading to Splunk Phantom version 4.10, the ibackup tool silently fails due to incorrect permissions set on its log files |
| 2021-07-13 | PSAAS-2143 | Typing "special" characters in some event creation fields causes complete page crash |
| 2021-06-29 | PSAAS-2262 | set_label() results in "TypeError: not expecting type '<class 'dict'>'" when result would be a duplicate container |
| 2021-06-15 | PSAAS-1792 | Investigation - the previous event is visible before the selected one is loaded |
| 2021-06-14 | PSAAS-2064 | 4.10.4 online rpm install fails because no phantom_local package is available |
| 2021-06-10 | PSAAS-1799 | Safari: cannot import event or playbook, tgz file not selectable |
Last modified on 04 August, 2021
| Known Issues in this release of Splunk Phantom | Get help for Splunk Phantom |
This documentation applies to the following versions of Splunk® Phantom (Legacy): 4.10.6
Download manual
Feedback submitted, thanks!