August Third Party Package Updates in Splunk Universal Forwarder

Advisory ID: SVD-2023-0809

CVE ID:  Multiple

Published: 2023-08-30

Last Update: 2023-08-30

Description

Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Splunk Universal Forwarder, including the folLowing:

PackageRemediationCVESeverity
libxsltPatchedCVE-2021-30560High
libxsltPatchedCVE-2021-30560High
curlUpgraded to 8.0.1CVE-2023-27538Medium
curlUpgraded to 8.0.1CVE-2023-27537Medium
curlUpgraded to 8.0.1CVE-2023-27536Medium
curlUpgraded to 8.0.1CVE-2023-27535Medium
curlUpgraded to 8.0.1CVE-2023-27534High
curlUpgraded to 8.0.1CVE-2023-27533High
curlUpgraded to 8.0.1CVE-2023-23916Medium
curlUpgraded to 8.0.1CVE-2023-23915Medium
curlUpgraded to 8.0.1CVE-2023-23914Critical
curlUpgraded to 8.0.1CVE-2022-43552Medium
curlUpgraded to 8.0.1CVE-2022-43551High
curlUpgraded to 8.0.1CVE-2022-42916High
curlUpgraded to 8.0.1CVE-2022-42915High
curlUpgraded to 8.0.1CVE-2022-35260Medium
curlUpgraded to 8.0.1CVE-2022-32221Critical
curlUpgraded to 8.0.1CVE-2022-35252Low
curlUpgraded to 8.0.1CVE-2022-32208Medium
curlUpgraded to 8.0.1CVE-2022-32207Critical
curlUpgraded to 8.0.1CVE-2022-32206Medium
curlUpgraded to 8.0.1CVE-2022-32205Medium
curlUpgraded to 8.0.1CVE-2022-30115Medium
curlUpgraded to 8.0.1CVE-2022-27782High
curlUpgraded to 8.0.1CVE-2022-27781High
curlUpgraded to 8.0.1CVE-2022-27780High
curlUpgraded to 8.0.1CVE-2022-27779Medium
curlUpgraded to 8.0.1CVE-2022-27778High
curlUpgraded to 8.0.1CVE-2022-27776Medium
curlUpgraded to 8.0.1CVE-2022-27775High
curlUpgraded to 8.0.1CVE-2022-27774Medium
curlUpgraded to 8.0.1CVE-2022-22576High
curlUpgraded to 8.0.1CVE-2021-22947Medium
curlUpgraded to 8.0.1CVE-2021-22946High
curlUpgraded to 8.0.1CVE-2021-22945Critical
curlUpgraded to 8.0.1CVE-2021-22926High
curlUpgraded to 8.0.1CVE-2021-22925Medium
curlUpgraded to 8.0.1CVE-2021-22924Low
curlUpgraded to 8.0.1CVE-2021-22923Medium
curlUpgraded to 8.0.1CVE-2021-22922Medium
curlUpgraded to 8.0.1CVE-2021-22901High
curlUpgraded to 8.0.1CVE-2021-22898Low
curlUpgraded to 8.0.1CVE-2021-22897Medium
curlUpgraded to 8.0.1CVE-2021-22890Low
curlUpgraded to 8.0.1CVE-2021-22876Medium
curlUpgraded to 8.0.1CVE-2020-8286High
curlUpgraded to 8.0.1CVE-2020-8285High
curlUpgraded to 8.0.1CVE-2020-8284Low
curlUpgraded to 8.0.1CVE-2020-8231High
curlUpgraded to 8.0.1CVE-2020-8177High
curlUpgraded to 8.0.1CVE-2020-8169High
libarchiveUpgraded to 3.6.2CVE-2022-36227Critical
libarchiveUpgraded to 3.6.2CVE-2021-31566High
libarchiveUpgraded to 3.6.2CVE-2021-36976Medium
lz4Upgraded to. 1.9.4CVE-2021-3520Critical
pcre2Upgraded to 10.40CVE-2020-14155Medium
pcre2Upgraded to 10.40CVE-2019-20454High
pcre2Upgraded to 10.40CVE-2019-20838High
pcre2Upgraded to 10.40CVE-2020-14155Medium
pcre2Upgraded to 10.40CVE-2019-20454High
pcre2Upgraded to 10.40CVE-2019-20838High
sqliteUpgraded to 3.41.2CVE-2022-35737High

Solution

For Splunk Universal Forwarder, upgrade versions to 8.2.12, 9.0.6, or 9.1.1.

Product Status

ProductBase VersionAffected VersionFix Version
Universal Forwarder8.28.2.0 to 8.2.118.2.12
Universal Forwarder9.09.0.0 to 9.0.59.0.6
Universal Forwarder9.19.1.09.1.1

Severity

For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) common vulnerability scoring system (CVSS) rating to align with industry standards.