OpenSSL crypto library ( incorrectly compiled with stack execution bit set in Splunk Enterprise and Universal Forwarder on certain operating systems

Advisory ID: SVD-2024-0708


Published: 2024-07-01

Last Update: 2024-07-01

CVSSv3.1 Score: NA, Informational

CVSSv3.1 Vector: NA

CWE: CWE-119

Bug ID: VULN-14673


In certain specific versions and platform architectures of Splunk Enterprise and the Universal Forwarder, the cryptographic library for OpenSSL ( was incorrectly compiled with its stack execution bit set. Setting the executable bit on .so library files is not a direct vulnerability,.

The problem affects the following versions of the Splunk platform only:
- Splunk Enterprise on Linux: 9.2.1,, 9.2.0, 9.1.4, 9.1.3, 9.0.9, and 9.0.8
- Universal Forwarder on Solaris: all versions below 9.2.2, 9.1.5, and 9.0.10.

The problem does not affect the following versions of the Splunk platform:
- Splunk Enterprise on Windows or MacOS.
- Universal Forwarder on Windows, MacOS, Linux, FreeBSD, or AIX.


Upgrade Splunk Enterprise on Linux and Universal Forwarder on Solaris to versions 9.2.2, 9.1.5, and 9.0.10, or higher.

Product Status

ProductVersionComponentAffected VersionFix Version
Splunk Enterprise - Linux9.2libcrypto9.2.0 to
Splunk Enterprise - Linux9.1libcrypto9.1.3 to
Splunk Enterprise - Linux9.0libcrypto9.0.8 to
Universal Forwarder - Solaris9.2libcrypto9.2.0 to
Universal Forwarder - Solaris9.1libcrypto9.1.0 to
Universal Forwarder - Solaris9.0libcrypto9.0.0 to

Mitigations and Workarounds





This advisory is informational only. A severity rating does not apply and the Common Vulnerability Scoring System (CVSS) is not applicable.