Third-Party Package Updates in Splunk/Splunk Docker - April 2025
Advisory ID: SVD-2025-0401
CVE ID: Multiple
Published: 2025-04-02
Last Update: 2025-04-02
Description
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in the “splunk/splunk“ Docker image with image tags “9.4.1“, “9.3.3“, “9.2.5“, “9.1.8“, and “latest“. Docker images with tags “9.4“, “9.3“, “9.2“, or “9.1“, also include these fixes.
The fixes that applied to the following list of advisories also apply to this advisory. You can review each advisory to see its details:
- SVD-2025-0301
- SVD-2025-0302
- SVD-2025-0303
- SVD-2025-0304
- SVD-2025-0305
- SVD-2025-0306
- SVD-2025-0307
- SVD-2025-0308
Third Party packages remedied includes the following:
| Package | Remediation | CVE | Severity |
|---|---|---|---|
| Jinja21 | Upgraded to 3.1.5 | CVE-2024-56201 and CVE-2024-56326 | Medium |
| requests2 | Upgraded to 2.32.3 | CVE-2024-35195 | Medium |
1 Upgrade jinja2 at usr/lib/python3.9/site-packages/jinja2 to 3.1.5
2 Upgrade the requests at /usr/lib/python3.9/site-packages/requests to 2.32.3. Note, tag 9.4.0 includes the updated package.
Solution
Upgrade your splunk/splunk Docker image to the most up-to-date version using the Docker image with tag “latest“.
Depending on the version of your image or container, you can also upgrade using images with tags “9.4.1“, “9.3.3“, “9.2.5“, or 9.1.8“ or higher, or, alternatively, with tags “9.4“, “9.3“, “9.2“, or “9.1“ or higher.
Product Status
| Product | Version | Component | Affected Version | Fix Version |
|---|---|---|---|---|
| splunk/splunk | 9.4 | 9.4.0 | 9.4.1 | |
| splunk/splunk | 9.3 | 9.3.0 to 9.3.2 | 9.3.3 | |
| splunk/splunk | 9.2 | 9.2.0 to 9.2.4 | 9.2.5 | |
| splunk/splunk | 9.1 | 9.1.0 to 9.1.7 | 9.1.8 |
Severity
For the CVEs in this list, Splunk adopted the severity rating that the vendor published.