Splunk® Enterprise

Release Notes



************************************************************************

Splunk Enterprise versions higher than version 9.4.2 are documented only on our new documentation portal.

************************************************************************

To get started, see the Splunk Enterprise page on help.splunk.com and the Splunk Enterprise 9.4.3 release notes.

************************************************************************

For information about how version selection works in the new portal, see Version selection on the About This Site page.

************************************************************************

Fixed issues

Splunk Enterprise 9.4.2 was released on April 28, 2025. This release includes fixes for the following issues.

Issues are listed in all relevant sections. Some issues might appear more than once.

Search issues

Date resolved Issue number Description
2025-02-06 SPL-270114, SPL-267619 Updated saved searches in custom app enters in a "fragile throttling state"

Federated search issues

Date resolved Issue number Description
2025-01-14 SPL-268208, SPL-266456 Federated Search & Analytics - Users unable to assign role-based access control to federated indexes using the Roles Web Page

Saved search, alerting, scheduling, and job management issues

Date resolved Issue number Description
2025-02-06 SPL-270114, SPL-267619 Updated saved searches in custom app enters in a "fragile throttling state"

Universal forwarder issues

Date resolved Issue number Description
2025-02-28 SPL-271696, SPL-266416 Crashing thread - WinEventLogInputProcessor on Universal forwarders after upgrading to 9.2.1. and even after upgrading to the 9.3.2
2025-02-17 SPL-266416, SPL-271693, SPL-271694, SPL-271695, SPL-271696 Crashing thread - WinEventLogInputProcessor on Universal forwarders after upgrading

Distributed deployment, forwarder, deployment server issues

Date resolved Issue number Description
2025-02-19 SPL-253782, SPL-270836, SPL-270837, SPL-270838, SPL-270845, SPL-270846, SPL-270847, SPL-270848 Forwarder management responds slowly after the Deployment Server upgrade to 9.2

Splunk Web and interface issues

Date resolved Issue number Description
2025-01-16 SPL-269111, SPL-268776 User unable to delete private report

Uncategorized issues

Date resolved Issue number Description
2025-03-13 SPL-269230, SPL-272608, SPL-272609, SPL-272610, SPL-272612, SPL-272615 SmartStore unable to connect to S3 with timezone earlier than UTC
2024-11-23 SPL-266774, SPL-266800, SPL-266801, SPL-266802, SPL-266803, SPL-266804, SPL-266805 Enable regex processor cpu profiling metrics.
Last modified on 17 June, 2025
Field alias behavior change   Deprecated and removed in version 9.4

This documentation applies to the following versions of Splunk® Enterprise: 9.4.2

Acrobat logo Download manual
Acrobat logo Download this page

Please expect delayed responses to documentation feedback while the team migrates content to a new system. We value your input and thank you for your patience as we work to provide you with an improved content experience!

Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters