Splunk Cloud Platform Maintenance Patch Release Information
List of issues that are fixed in maintenance patch releases of Splunk Cloud Platform. Maintenance patch release notes are updated Monday to Friday, typically around 2AM UTC and 12.30PM UTC. If your upgrade details aren't yet visible, please check back after this time.
List of issues that are fixed in maintenance patch releases of Splunk Cloud Platform. Maintenance patch release notes are updated Monday to Friday, typically around 2AM UTC and 12.30PM UTC. If your upgrade details aren't yet visible, please check back after this time.
10.1.2507.X Fixed Issues
This section includes information on fixed issues in 10.1.2507.X
10.1.2507.15
Publication Date: January 09, 2026
Security Fixes:
| Security Level | Count |
|---|---|
| CRITICAL | 0 |
| HIGH | 1 |
| MEDIUM | 0 |
| LOW | 0 |
Fixed Issues:
Splunk Web and interface issues
| Issue Number | Description |
|---|---|
| SPL-292914 | ES Content Updates app is missing on the GCP sh stack |
| SPL-293083 | splunkd crash occurring on stack ES SH by incorrect SPL |
Upgrade issues
| Issue Number | Description |
|---|---|
| SPL-293091 | MainThread crash on start after upgrading from v9.3.1 |
10.1.2507.14
Publication Date: December 23, 2025
Fixed Issues:
Saved search, alerting, scheduling, and job management issues
| Issue Number | Description |
|---|---|
| SPL-290995 | High search periods lead to higher skips in pull |
| SPL-291890 | Fetcher to Scheduler copy takes a long time, leading to a degradation of scheduled search throughput |
| SPL-291898 | Making copy of Saved Search object in scheduler hot path leads to large degradation or pause of scheduled search thruput |
Search issues
| Issue Number | Description |
|---|---|
| SPL-291641 | Prevent stats from creating unlimited temp files without disk space restriction |
| SPL-291805 | Search results discrepancy for marker_name field |
| SPL-292038 | Auto adjusting idle search processes on hostwide memory usage |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-289606 | IPC Broker client crashes the Supervisor if Splunk API is not available |
| SPL-291960 | Newly created rules aren't affecting already running searches on single search head |
| SPL-292154 | INDX have finished the search properly but SH is not handling the closing properly and marking the search as failed |
| SPL-292556 | ReceiptValidator asserts on optional receipt.json field |
| SPL-292733 | DDAA GCP 'ExpireTime' as INT is not being indexed |
| SPL-292832 | Prevent crashes when ingesting events with Full TimeZone names |
10.1.2507.13
Publication Date: December 03, 2025
Fixed Issues:
Admin and CLI issues
| Issue Number | Description |
|---|---|
| SPL-290473 | Redact fields that match server.conf | encrypt_fields before writing to conf.log |
Monitoring Console/DMC issues
| Issue Number | Description |
|---|---|
| SPL-290867 | Investigate and repair broken links to Splunkbase apps |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-290701 | Correct Python libraries dependencies for Splunk 10.1 |
| SPL-291221 | Deadlock between _workloadMutex and _workloadMetricsMutex while computing workload metrics |
| SPL-291483 | Fallback download fails on TAI list generation |
| SPL-291578 | Exit early by default on app_list generation if it already exists |
10.1.2507.12
Publication Date: November 21, 2025
Fixed Issues:
Indexer and indexer clustering issues
| Issue Number | Description |
|---|---|
| SPL-286574 | Updated timestamp in output of rest api services/cluster/manager/info is incorrect |
Distributed search and search head clustering issues
| Issue Number | Description |
|---|---|
| SPL-289098 | SHPoolingListeners::notifyPeerHeartbeat hangs while holding SHPCaptain mutex bringing down scheduler and SHC functionality |
Splunk Web and interface issues
| Issue Number | Description |
|---|---|
| SPL-290860 | MaxLength property prevents clients to enter all the data they need |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-290291 | Fix missing fields in SAML config assignment operator and add missing values in conf persistence. |
10.1.2507.11
Publication Date: November 10, 2025
Security Fixes:
| Security Level | Count |
|---|---|
| CRITICAL | 0 |
| HIGH | 1 |
| MEDIUM | 0 |
| LOW | 0 |
Fixed Issues:
Distributed search and search head clustering issues
| Issue Number | Description |
|---|---|
| SPL-288714 | Superfluous WARN error message in search.log concerning search manifest granularity |
Upgrade issues
| Issue Number | Description |
|---|---|
| SPL-288840 | Upgrade Splunk is crashing after upgrading from 9.2.1 to 9.3.1. |
Indexer and indexer clustering issues
| Issue Number | Description |
|---|---|
| SPL-289711 | Splunk cluster manager - cluster bundle is stuck in Bundle validation is in progress |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-288478 | Modify replication default timeout and failure behavior |
| SPL-288565 | FPT_AEX_EXT.1.5 Safelogic's fips140-3/fips.so is built without stack protection |
| SPL-288699 | preventing subsearches from using Pure streaming optimizations added in SPL-284820 |
| SPL-284820 | Pure streaming queries take much longer for federated search |
| SPL-289044 | Dynamodb distributed locking replies with 500 instead of 503 |
| SPL-289131 | Fix double base64 encoding under OpenSSL3 |
| SPL-289170 | Splunkd crashes when attempting to remove a security token that is assigned to an LDAP user that has been removed. |
| SPL-289392 | Setup certificates across SHU |
10.0.2503.X Fixed Issues
This section includes information on fixed issues in 10.0.2503.X
10.0.2503.10
Publication Date: November 22, 2025
Fixed Issues:
Indexer and indexer clustering issues
| Issue Number | Description |
|---|---|
| SPL-286573 | updated timestamp in output of rest api services/cluster/manager/info is incorrect |
Distributed search and search head clustering issues
| Issue Number | Description |
|---|---|
| SPL-289097 | SHPoolingListeners::notifyPeerHeartbeat hangs while holding SHPCaptain mutex bringing down scheduler and SHC functionality |
Splunk Web and interface issues
| Issue Number | Description |
|---|---|
| SPL-290858 | MaxLength property prevents clients to enter all the data they need |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-289131 | Fix double base64 encoding under OpenSSL3 |
| SPL-290288 | Fix missing fields in SAML config assignment operator and add missing values in conf persistence. |
| SPL-290966 | Remove size check for evtFormatMsg() in splunk_winevtlog |
10.0.2503.9
Publication Date: November 04, 2025
Security Fixes:
| Security Level | Count |
|---|---|
| CRITICAL | 0 |
| HIGH | 1 |
| MEDIUM | 0 |
| LOW | 0 |
Fixed Issues:
Upgrade issues
| Issue Number | Description |
|---|---|
| SPL-288838 | Upgrade Splunk is crashing after upgrading from 9.2.1 to 9.3.1. |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-284619 | Stop the request if content-length exceeds the limit. |
| SPL-285860 | Rolling upgrade CLI help does not work for cluster-manager |
| SPL-288476 | Modify replication default timeout and failure behavior |
| SPL-288564 | FPT_AEX_EXT.1.5 Safelogic's fips140-3/fips.so is built without stack protection |
| SPL-288698 | preventing subsearches from using Pure streaming optimizations added in SPL-284820 |
| SPL-284820 | Pure streaming queries take much longer for federated search |
| SPL-288866 | AppExport throwing ImportError |
| SPL-289169 | Splunkd crashes when attempting to remove a security token that is assigned to an LDAP user that has been removed. |
9.3.2411.X Fixed Issues
This section includes information on fixed issues in 9.3.2411.X
9.3.2411.122
Publication Date: December 15, 2025
Fixed Issues:
Splunk Web and interface issues
| Issue Number | Description |
|---|---|
| SPL-285822 | UI slowness/timeouts while accessing macros and searches |
Admin and CLI issues
| Issue Number | Description |
|---|---|
| SPL-290471 | Redact fields that match server.conf | encrypt_fields before writing to conf.log |
Monitoring Console/DMC issues
| Issue Number | Description |
|---|---|
| SPL-290866 | Fix the links pointing to Splunkbase apps in Apps UI |
Search issues
| Issue Number | Description |
|---|---|
| SPL-291640 | Prevent stats from creating unlimited temp files without disk space restriction |
Saved search, alerting, scheduling, and job management issues
| Issue Number | Description |
|---|---|
| SPL-291892 | Fetcher to Scheduler copy takes a long time, leading to a degradation of scheduled search throughput |
| SPL-291900 | Making copy of Saved Search object in scheduler hot path leads to large degradation or pause of scheduled search thruput |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-291959 | Newly created rules aren't affecting already running searches on single search head |
| SPL-292077 | Aging_out might OOM on older releases |
9.3.2411.121
Publication Date: November 22, 2025
Fixed Issues:
Distributed search and search head clustering issues
| Issue Number | Description |
|---|---|
| SPL-289104 | SHPoolingListeners::notifyPeerHeartbeat hangs while holding SHPCaptain mutex bringing down scheduler and SHC functionality |
Splunk Web and interface issues
| Issue Number | Description |
|---|---|
| SPL-290859 | MaxLength property prevents clients to enter all the data they need |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-289168 | Splunkd crashes when attempting to remove a security token that is assigned to an LDAP user that has been removed. |
| SPL-289441 | Stop the request if content-length exceeds the limit. |
| SPL-290289 | Fix missing fields in SAML config assignment operator and add missing values in conf persistence. |
9.3.2411.120
Publication Date: November 05, 2025
Security Fixes:
| Security Level | Count |
|---|---|
| CRITICAL | 0 |
| HIGH | 1 |
| MEDIUM | 1 |
| LOW | 0 |
Fixed Issues:
Upgrade issues
| Issue Number | Description |
|---|---|
| SPL-288880 | Upgrade Splunk is crashing after upgrading from 9.2.1 to 9.3.1. |
Uncategorized issues
| Issue Number | Description |
|---|---|
| SPL-285861 | Rolling upgrade CLI help does not work for cluster-manager |
| SPL-287907 | DMC HEC input support for _meta in inputs.conf |
| SPL-288477 | Modify replication default timeout and failure behavior |