Splunk® Enterprise

Release Notes

Download manual as PDF

Splunk Enterprise version 5.0 reached its End of Life on December 1, 2017. Please see the migration information.
This documentation does not apply to the most recent version of Splunk. Click here for the latest version.
Download topic as PDF


Splunk Enterprise 5.0.10 was released on October 1, 2014.

The following issues are resolved in 5.0.10.

Resolved security issues

  • XSS in dashboard panel title field. (SPL-90120)
  • CVE-2014-3511: OpenSSL TLS protocol downgrade attack. (SPL-88588)
  • XSS vulnerability in user-supplied input. (SPL-87882)

For more information, refer to this posting on the Splunk Security Portal.

Search, saved search, alerting, scheduling, and job management issues

  • Customers are unable to search a specific time range due to an error that states "Earliest time cannot be greater than latest time." Workaround: add earliest= and latest= commands to the search query. (SPL-90717)
  • Corrupt bundle causes search process to exit with error code 255. (SPL-82487)

Index replication issues

  • AckQ causes permanent data stall when a single pData is larger than entire AckQ size. (SPL-82109) (SPL-84882)
  • Downloads of knowledge bundles from search heads to search peers could result in bundle corruption on the peers due to timeouts. (SPL-82333)

Distributed deployment, forwarder, and deployment server issues

  • When the data from a given search peer changes, the search head adds the new information to the old, retaining any old out-of-date information about licenses in use on the peers. Cases include using a new license master, or changing the licenses on the license master, or changing local licenses on the search peer. This can cause false duplication scenarios and incorrectly disable search on peers. (SPL-81246)
  • In a deployment server with SSL disabled, deployment clients still attempt SSL communication and fail. (SPL-82744)
  • Search heads request truncated replicated bundle listing from indexers, causing problems if a bundle >30 entries in the past is needed. (SPL-86758)

Windows-specific issues

  • Universal forwarder stops forwarding Windows security and application event logs when anti-virus is running on the forwarder. (SPL-81782)

Unsorted issues

  • TCP output stalls inside unnecessary condition variable. (SPL-84231)

This documentation applies to the following versions of Splunk® Enterprise: 5.0.10, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18

Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters