Autor Thema: Wireshark (Ex-Ethereal) ...  (Gelesen 9272 mal)

0 Mitglieder und 1 Gast betrachten dieses Thema.

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.5
« Antwort #135 am: 24 Februar, 2018, 11:00 »
Changelog

BUG FIXES:

The following vulnerabilities have been fixed:

The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335
Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible.
The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334
The DOCSIS dissector could crash. Bug 14446, CVE-2018-7337
The FCP dissector could crash. Bug 14374, CVE-2018-7336
THe SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320
The pcapng file parser could crash. Bug 14403, CVE-2018-7420
The IPMI dissector could crash. Bug 14409, CVE-2018-7417
The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418
The NBAP disssector could crash. Bug 14443, CVE-2018-7419

The following bugs have been fixed:

Change placement of "double chevron" in Filter Toolbar to eliminate overlap. (Bug 14121)
AutoScroll does not work. (Bug 14257)
BOOTP/DHCP: malformed packet → when user class option (77) is present. (Bug 14312)
GET MAX LUN wLength decoded as big-endian - USB Mass Storage. (Bug 14360)
Unable to create Filter Expression Button for a yellow filter. (Bug 14369)
Buildbot crash output: fuzz-2018-01-28-15874.pcap. (Bug 14371)
NetScaler RPC segmentation fault / stack overflow. (Bug 14399)
[oss-fuzz] #6028 RPC_NETLOGON: Direct-leak in g_malloc (generate_hash_key). (Bug 14407)
Newline "n" in packet list field increase line height for all rows. (Bug 14424)
ieee80211-radio.c preamble duration calculation not correct. (Bug 14439)
DIS: Malformed packet in SISO-STD-002 transmitter. (Bug 14441)

Updated Protocol Support:

ASN.1 BER, BOOTP/DHCP, DCE RPC NETLOGON, DICOM, DIS, DMP, DOCSIS, EPL, FCP, GSM A RR, HSRP, IAX2, IEEE 802.11, Infiniband, IPMI, IPv6, LDAP, LLTD, NBAP, NetScaler RPC, OpenFlow, RELOAD, RPCoRDMA, RPKI-Router, S7COMM, SCCP, SIGCOMP, Thread, Thrift, TLS/SSL, UMTS MAC, USB, USB Mass Storage, and WCCP

New and Updated Capture File Support:

pcap pcapng

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.2.13
« Antwort #136 am: 24 Februar, 2018, 11:30 »
Changelog

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-05

    The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335

    wnpa-sec-2018-06

    Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible.

    wnpa-sec-2018-07

    The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334

    wnpa-sec-2018-09

    The FCP dissector could crash. Bug 14374, CVE-2018-7336

    wnpa-sec-2018-10

    The SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320

    wnpa-sec-2018-11

    The pcapng file parser could crash. Bug 14403, CVE-2018-7420

    wnpa-sec-2018-12

    The IPMI dissector could crash. Bug 14409, CVE-2018-7417

    wnpa-sec-2018-13

    The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418

    wnpa-sec-2018-14

    The NBAP disssector could crash. Bug 14443, CVE-2018-7419

The following bugs have been fixed:

    Change placement of "double chevron" in Filter Toolbar to eliminate overlap. (Bug 14121)
    GET MAX LUN wLength decoded as big-endian - USB Mass Storage. (Bug 14360)
    Buildbot crash output: fuzz-2018-01-28-15874.pcap. (Bug 14371)
    [oss-fuzz] #6028 RPC_NETLOGON: Direct-leak in g_malloc (generate_hash_key). (Bug 14407)

New and Updated Features

There are no new features in this release.

New File Format Decoding Support

There are no new file formats in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

ASN.1 BER, BOOTP/DHCP, DCE RPC NETLOGON, DICOM, DIS, DMP, DOCSIS, FCP, IAX2, IEEE 802.11, IPMI, LLTD, NBAP, OpenFlow, RELOAD, RPCoRDMA, RPKI-Router, S7COMM, SCCP, SIGCOMP, Thread, Thrift, UMTS MAC, USB, USB Mass Storage, and WCCP

New and Updated Capture File Support

pcapng

New and Updated Capture Interfaces support

There are no new or updated capture interfaces supported in this release.

 Major API Changes

There are no major API changes in this release.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.6
« Antwort #137 am: 04 April, 2018, 11:00 »
Changelog

The following vulnerabilities have been fixed:

The MP4 dissector could crash. (Bug 13777)
The ADB dissector could crash. (Bug 14460)
The IEEE 802.15.4 dissector could crash. (Bug 14468)
The NBAP dissector could crash. (Bug 14471)
The VLAN dissector could crash. (Bug 14469)
The LWAPP dissector could crash. (Bug 14467)
The TCP dissector could crash. (Bug 14472)
The CQL dissector could to into an infinite loop. (Bug 14530)
The Kerberos dissector could crash. (Bug 14576)
Multiple dissectors and other modules could leak memory. The TN3270 (Bug 14480), ISUP (Bug 14481), LAPD (Bug 14482), SMB2 (Bug 14483), GIOP (Bug 14484), ASN.1 (Bug 14485), MIME multipart (Bug 14486), H.223 (Bug 14487), and PCP (Bug 14488) dissectors were susceptible along with Wireshark and TShark (Bug 14489).

The following bugs have been fixed:

TRANSUM doesn’t account for DNS retries in the Request Spread. (Bug 14210)
BGP: IPv6 NLRI is received with Add-path ID, then Wireshark is not able to decode the packet correctly. (Bug 14241)
Lua script calling Ethernet dissector runs OK in 1.12.4 but crashes in later releases. (Bug 14293)
PEEKREMOTE dissector lacks 80mhz support, short preamble support and spatial streams encoding. (Bug 14452)
Statistics > UDP Multicast Streams > [Copy|Save as..] is broken. (Bug 14477)
Typo error in enumeration value of speech version identifier. (Bug 14528)
In "Unsaved packets" dialog one can NOT use keyboard to choose "Continue without Saving". (Bug 14531)
WCCP logical error in CHECK_LENGTH_ADVANCE_OFFSET macros. (Bug 14538)
Buildbot crash output: fuzz-2018-03-19-19114.pcap. (Bug 14544)
alloca() used in wsutil/getopt_long.c without <alloca.h> inclusion. (Bug 14552)
HP-UX HP ANSI C requires -Wp,-H200000 flag to compile. (Bug 14554)
Makefile.in uses non-portable "install" command. (Bug 14555)
HP-UX HP ANSI C doesn’t support assigning {} to a variable in epan/app_mem_usage.c. (Bug 14556)
PPP in SSTP, HDLC framing not parsed properly. (Bug 14559)
Using the DIAMETER dictionary causes the standard input to be closed when the dictionary is read. (Bug 14577)

Updated Protocol Support:

6LoWPAN, ADB, BGP, CQL, DNS, Ethernet, GIOP, GSM BSSMAP, H.223, IEEE 802.11, IEEE 802.11 Radiotap, IEEE 802.15.4, ISUP, Kerberos, LAPD, LWAPP, MIME multipart, MP4, NBAP, NORDIC_BLE, PCP, PEEKREMOTE, S1AP, SMB2, SSTP, T.30, TCP, TN3270, TRANSUM, VLAN, WCCP, and WSP

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.2.14
« Antwort #138 am: 04 April, 2018, 14:00 »
Changelog

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-15

    The MP4 dissector could crash. (Bug 13777)

    wnpa-sec-2018-16

    The ADB dissector could crash. (Bug 14460)

    wnpa-sec-2018-17

    The IEEE 802.15.4 dissector could crash. (Bug 14468)

    wnpa-sec-2018-18

    The NBAP dissector could crash. (Bug 14471)

    wnpa-sec-2018-19

    The VLAN dissector could crash. (Bug 14469)

    wnpa-sec-2018-20

    The LWAPP dissector could crash. (Bug 14467)

    wnpa-sec-2018-23

    The Kerberos dissector could crash. (Bug 14576)
    tshark memory leaks with asan / valgrind [tn3270] (1/10). (Bug 14480)
    tshark memory leaks with asan / valgrind [isup] (2/10). (Bug 14481)
    tshark memory leaks with asan / valgrind [lapd] (3/10). (Bug 14482)
    tshark memory leaks with asan / valgrind [smb2] (4/10). (Bug 14483)
    tshark memory leaks with asan / valgrind [Inter-ORB] (5/10). (Bug 14484)
    tshark memory leaks with asan / valgrind [oids] (6/10). (Bug 14485)
    tshark memory leaks with asan / valgrind [multipart] (7/10). (Bug 14486)
    tshark memory leaks with asan / valgrind [h223] (8/10). (Bug 14487)
    tshark memory leaks with asan / valgrind [Co-Pilot] (9/10). (Bug 14488)

The following bugs have been fixed:

    Lua script calling Ethernet dissector runs OK in 1.12.4 but crashes in later releases. (Bug 14293)
    PEEKREMOTE dissector lacks 80mhz support, short preamble support and spatial streams encoding. (Bug 14452)
    Typo error in enumeration value of speech version identifier. (Bug 14528)
    WCCP logical error in CHECK_LENGTH_ADVANCE_OFFSET macros. (Bug 14538)
    Buildbot crash output: fuzz-2018-03-19-19114.pcap. (Bug 14544)
    alloca() used in wsutil/getopt_long.c without <alloca.h> inclusion. (Bug 14552)
    HP-UX HP ANSI C requires -Wp,-H200000 flag to compile. (Bug 14554)
    Makefile.in uses non-portable "install" command. (Bug 14555)
    HP-UX HP ANSI C doesn’t support assigning {} to a variable in epan/app_mem_usage.c. (Bug 14556)
    PPP in SSTP, HDLC framing not parsed properly. (Bug 14559)
    Using the DIAMETER dictionary causes the standard input to be closed when the dictionary is read. (Bug 14577)

Updated Protocol Support

6LoWPAN, ADB, DNS, Ethernet, GIOP, GSM BSSMAP, H.223, IEEE 802.11, IEEE 802.11 Radiotap, IEEE 802.15.4, ISUP, Kerberos, LAPD, LWAPP, MIME multipart, MP4, NBAP, PCP, PEEKREMOTE, S1AP, SMB2, SSTP, T.30, TN3270, VLAN, WCCP, and WSP

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.0
« Antwort #139 am: 25 April, 2018, 09:13 »
Whats new:>>

HTTP Request sequences are now supported.
Wireshark now supports MaxMind DB files. Support for GeoIP and GeoLite Legacy databases has been removed.
The Windows packages are now built using Microsoft Visual Studio 2017.
The IP map feature (the “Map” button in the “Endpoints” dialog) has been removed.

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.1
« Antwort #140 am: 23 Mai, 2018, 05:00 »
Changelog

    • The Windows installers now ship with Qt 5.9.5. Previously they
      shipped with Qt 5.9.4.

  Bug Fixes

   The following vulnerabilities have been fixed:

     • ws-sa2018-25

     • The LDSS dissector could crash. (ws-bug14615)

     • ws-sa2018-26

     • The IEEE 1905.1a dissector could crash. (ws-bug14647)

     • ws-sa2018-27

     • The RTCP dissector could crash. (ws-bug14673)

     • ws-sa2018-28

     • Multiple dissectors could consume excessive memory. (ws-bug14678)

     • ws-sa2018-29

     • The DNS dissector could crash. (ws-bug14681)

     • ws-sa2018-30

     • The GSM A DTAP dissector could crash. (ws-bug14688)

     • ws-sa2018-31

     • The Q.931 dissector could crash. (ws-bug14689)

     • ws-sa2018-32

     • The IEEE 802.11 dissector could crash. (ws-bug14686)

     • ws-sa2018-33

     • Multiple dissectors could crash. (ws-bug14703)

   The following bugs have been fixed:

     • Qt GUI does not snap to exactly half of screen in Windows. (Bug
       13516[1])

     • Segmentation fault when switching profiles. (Bug 14316[2])

     • QUIC dissector produces incorrect packet numbers (wrong-endian).
       (Bug 14462[3])

     • Wrong default file format chosen in when saving a capture with
       comments added if the original format doesn’t support comments.
       (Bug 14601[4])

     • Lua: Error during loading [AppData directory]:1: bad argument #1
       to dofile (dofile: file does not exist). (Bug 14619[5])

     • Crash when selecting text. (Bug 14620[6])

     • ui/macosx directory missing from source release tarball. (Bug
       14627[7])

     • Wireshark 2.9.0 snapshot crashes/segfaults on Windows when
       launched with -k or -i. (Bug 14632[8])

     • "Copy as printable text" isn’t copying non-alphanumeric
       characters. (Bug 14633[9])

     • File missing from release tarball. (Bug 14634[10])

     • NEWS is out of date and does not display properly in Notepad.
       (Bug 14636[11])

     • l16mono.so is installed in the wrong place. (Bug 14638[12])

     • Remove: HACK to support UHD’s weird header offset on data
       packets. (Bug 14641[13])

     • WinSparkle 0.5.6 is out of date and is buggy. (Bug 14642[14])

     • Unable to create or open VOIP captures. (Bug 14648[15])

     • RTMPT: incorrect dissection of multiple RTMP packets within a
       single TCP packet. (Bug 14650[16])

     • Endpoints dialog displays invalid GeoIP information due to
       incorrect byte order. (Bug 14656[17])

     • Qt: Crash in ShowPacketBytesDialog(). (Bug 14658[18])

     • Statistics → Resolved addresses show IP addresses without domain.
       (Bug 14667[19])

     • Erroneous MAC-LTE Dissection for Sidelink Shared Channel Packets.
       (Bug 14669[20])

     • Files missing from docbook CMake file. (Bug 14676[21])

     • Wireshark hangs when opening certain files if it’s been
       configured to use the new GeoIP databases. (Bug 14701[22])

   The “Open”, “Save”, and other file dialogs should now be shown at the
   correct size on HiDPI Windows systems.

  New and Updated Features

   There are no new features in this release.

  New Protocol Support

   There are no new protocols in this release.

  Updated Protocol Support

   BATADV, BT LE LL, CoAP, DNS, DTLS, GSM A DTAP, GSM A GM, GTP, GTPv2,
   IEEE 1905.1a, IEEE 802.11, LDSS, LwM2M-TLV, MAC LTE, NAS EPS, Q.931,
   RTCP, RTMPT, SDP, TCP, and VITA 49

  New and Updated Capture File Support

   3GPP TS 32.423 Trace and Android Logcat

  New and Updated Capture Interfaces support

   There is no new or updated capture file support in this release.

 Getting Wireshark

  Wireshark source code and installation packages are available from
  https://www.wireshark.org/download.html[23].

  Vendor-supplied Packages

   Most Linux and Unix vendors supply their own Wireshark packages. You
   can usually install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages can
   be found on the download page[24] on the Wireshark web site.

 File Locations

  Wireshark and TShark look in several different locations for
  preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These
  locations vary from platform to platform. You can use About→Folders to
  find the default locations on your system.

 Known Problems

  The BER dissector might infinitely loop. (Bug 1516[25])

  Capture filters aren’t applied when capturing from named pipes. (Bug
  1814[26])

  Filtering tshark captures with read filters (-R) no longer works. (Bug
  2234[27])

  Application crash when changing real-time option. (Bug 4035[28])

  Wireshark and TShark will display incorrect delta times in some cases.
  (Bug 4985[29])

  Wireshark should let you work with multiple capture files. (Bug
  10488[30])

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.7
« Antwort #141 am: 23 Mai, 2018, 06:00 »
Changelog

  Bug Fixes

   The following vulnerabilities have been fixed:
     * [1]wnpa-sec-2018-25
       The LDSS dissector could crash. ([2]Bug 14615)
     * [3]wnpa-sec-2018-28
       Multiple dissectors could consume excessive memory. ([4]Bug 14678)
     * [5]wnpa-sec-2018-29
       The DNS dissector could crash. ([6]Bug 14681)
     * [7]wnpa-sec-2018-30
       The GSM A DTAP dissector could crash. ([8]Bug 14688)
     * [9]wnpa-sec-2018-31
       The Q.931 dissector could crash. ([10]Bug 14689)
     * [11]wnpa-sec-2018-33
       Multiple dissectors could crash. ([12]Bug 14703)

   The following bugs have been fixed:
     * Double "Full Screen" menu item on macOS. ([13]Bug 13366)
     * Segmentation fault when switching profiles. ([14]Bug 14316)
     * extcap: InterfaceToolbar control pipe broken. ([15]Bug 14532)
     * SIP Response-time not being well calculated. ([16]Bug 14551)
     * HP-UX HP ANSI C requires -Wp,-H200000 flag to compile. ([17]Bug
       14554)
     * Power Capability tag interpreted incorrectly. ([18]Bug 14593)
     * Issue while building latest version of wireshark 2.4.6. ([19]Bug
       14597)
     * SMB2 Write requests not displayed. ([20]Bug 14598)
     * Wrong default file format chosen in when saving a capture with
       comments added if the original format doesn't support comments.
       ([21]Bug 14601)
     * ui/macosx directory missing from source release tarball. ([22]Bug
       14627)
     * Wireshark 2.9.0 snapshot crashes/segfaults on Windows when launched
       with -k or -i. ([23]Bug 14632)
     * File missing from release tarball. ([24]Bug 14634)
     * Remove: HACK to support UHD's weird header offset on data packets.
       ([25]Bug 14641)
     * WinSparkle 0.5.6 is out of date and is buggy. ([26]Bug 14642)
     * RTMPT: incorrect dissection of multiple RTMP packets within a
       single TCP packet. ([27]Bug 14650)
     * Erroneous MAC-LTE Dissection for Sidelink Shared Channel Packets.
       ([28]Bug 14669)
     * Files missing from docbook CMake file. ([29]Bug 14676)

  New and Updated Features

   There are no new features in this release.

  New Protocol Support

   There are no new protocols in this release.

  Updated Protocol Support

   BATADV, BT LE LL, BVLC, DLT_USER, DNS, GSM A BSSMAP, GSM A DTAP, GSM A
   GM, GTP, GTPv2, IEEE 802.11, LAPDm, LDSS, Logcat Text, LwM2M-TLV, MAC
   LTE, MP2T, MPEG PES, NBSS, Q.931, RSL, RTMPT, S7COMM, SIP, TCP, and
   VITA 49

  New and Updated Capture File Support

   3GPP TS 32.423 Trace, and Android Logcat

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.2
« Antwort #142 am: 19 Juli, 2018, 06:00 »
Release Notes

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-34

    BGP dissector large loop. Bug 13741. CVE-2018-14342.

    wnpa-sec-2018-35

    ISMP dissector crash. Bug 14672. CVE-2018-14344.

    wnpa-sec-2018-36

    Multiple dissectors could crash. Bug 14675. CVE-2018-14340.

    wnpa-sec-2018-37

    ASN.1 BER dissector crash. Bug 14682. CVE-2018-14343.

    wnpa-sec-2018-38

    MMSE dissector infinite loop. Bug 14738. CVE-2018-14339.

    wnpa-sec-2018-39

    DICOM dissector crash. Bug 14742. CVE-2018-14341.

    wnpa-sec-2018-40

    Bazaar dissector infinite loop. Bug 14841. CVE-2018-14368.

    wnpa-sec-2018-41

    HTTP2 dissector crash. Bug 14869. CVE-2018-14369.

    wnpa-sec-2018-42

    CoAP dissector crash. Bug 14966. CVE-2018-14367.

The following bugs have been fixed:

    ISMP.EDP "Tuples" dissected incorrectly. Bug 4943.

    Wireshark - Race issue when switching between files using Wireshark’s "Files in Set" dialog. Bug 10870.

    Sorting on "Source port" or "Destination port" column sorts alphabetically, not numerically. Bug 11460.

    Wireshark crashes when changing profiles. Bug 11648.

    Crash when starting capture while saving capture file or rescanning file after display filter change. Bug 13594.

    Crash when switching to TRANSUM enabled profile. Bug 13697.

    TCP retransmission with additional payload leads to incorrect bytes and length in stream. Bug 13700.

    Wireshark crashes with single quote string display filter. Bug 14084.

    randpkt can write packets that libwiretap can’t read. Bug 14107.

    Wireshark crashes when loading new file before previous load has finished. Bug 14351.

    Valid packet produces Malformed Packet: OpcUa. Bug 14465.

    Error received from dissect_wccp2_hash_assignment_info(). Bug 14573.

    CRC checker wrong for FPP. Bug 14610.

    Cross-build broken due to make-dissectors and make-taps. Bug 14622.

    Extraction of SMB file results in wrong size. Bug 14662.

    6LoWPAN dissector merges fragments from different sources. Bug 14700.

    IP address to name resolution doesn’t work in TShark. Bug 14711.

    "Decode as" Modbus RTU over USB doesn’t work with 2.6.0 but with 2.4.6. Bug 14717.

    proto_tree_add_protocol_format might leak memory. Bug 14719.

    tostring for NSTime objects in lua gives wrong results. Bug 14720.

    Media type "application/octet-stream" registered for both Thread and UASIP. Bug 14729.

    Crash related to SCTP tap. Bug 14733.

    Formatting of OSI area addresses/address prefixes goes past the end of the area address/address prefix. Bug 14744.

    ICMPv6 Router Renumbering - Packet Dissector - malformed. Bug 14755.

    WiMAX HARQ MAP decoder segfaults when length is too short. Bug 14780.

    HTTP PUT request following a HEAD request is not correctly decoded. Bug 14793.

    SYNC PDU type 3 miss the last PDU length. Bug 14823.

    Reversed 128 bits service UUIDs when Bluetooth Low Energy advertisement data are dissected. Bug 14843.

    Issues with Wireshark when the user doesn’t have permission to capture. Bug 14847.

    Wrong description when LE Bluetooth Device Address type is dissected. Bug 14866.

    LE Role advertisement type (0x1c) is not dissected properly according to the Bluetooth specification. Bug 14868.

    Regression: Wireshark 2.6.0 and 2.6.1 are unable to read NetMon files which were readable by previous versions. Bug 14876.

    Wireshark doesn’t properly display (deliberately) invalid 220 responses from Postfix. Bug 14878.

    Follow TCP Stream and click reassembled content moves you to incorrect current packet. Bug 14898.

    Crash when changing profiles while loading a capture file. Bug 14918.

    Duplicate PDU during C Arrays Output Export. Bug 14933.

    DCE/RPC not dissected when "reserved for use by implementations" flag bits set. Bug 14942.

    Follow TCP Stream truncates output on missing (but ACKed) segments. Bug 14944.

    There’s no option to include column headings when printing packets or exporting packet dissections with Qt Wireshark. Bug 14945.

    Qt: SCTP Graph Dialog: Abort when doing analysis. Bug 14971.

    CMake is unable to find LUA libraries. Bug 14983.

New and Updated Features

There are no new features in this release.
New Protocol Support

There are no new protocols in this release.
Updated Protocol Support

6LoWPAN, ASN.1 BER, Bazaar, BGP, Bluetooth, Bluetooth HCI_CMD, CIGI, Cisco ttag, CoAP, Data, DCERPC, Diameter 3GPP, DICOM, DOCSIS, FPP, GSM A GM, GTPv2, HTTP, HTTP2, IAX2, ICMPv6, IEEE 1722, IEEE 802.11, IPv4, ISMP, LISP, MMSE, MTP3, MySQL, NFS, OpcUa, PPI GPS, Q.931, RNSAP, RPCoRDMA, S1AP, SCTP, SMB, SMTP, STUN, SYNC, T.30, TCP, TRANSUM, WAP, WCCP, Wi-SUN, WiMax HARQ Map Message, and WSP
New and Updated Capture File Support

Alcatel-Lucent Ascend and Microsoft Network Monitor
New and Updated Capture Interfaces support

There is no new or updated capture file support in this release.
Getting Wireshark

Wireshark source code and installation packages are available from https://www.wireshark.org/download.html.
Vendor-supplied Packages

Most Linux and Unix vendors supply their own Wireshark packages. You can usually install or upgrade Wireshark using the package management system specific to that platform. A list of third-party packages can be found on the download page on the Wireshark web site.
File Locations

Wireshark and TShark look in several different locations for preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations vary from platform to platform. You can use About→Folders to find the default locations on your system.
Known Problems

The BER dissector might infinitely loop. Bug 1516.

Capture filters aren’t applied when capturing from named pipes. Bug 1814.

Filtering tshark captures with read filters (-R) no longer works. Bug 2234.

Application crash when changing real-time option. Bug 4035.

Wireshark and TShark will display incorrect delta times in some cases. Bug 4985.

Wireshark should let you work with multiple capture files. Bug 10488.
Getting Help

Community support is available on Wireshark’s Q&A site and on the wireshark-users mailing list. Subscription information and archives for all of Wireshark’s mailing lists can be found on the web site.

Official Wireshark training and certification are available from Wireshark University.
Frequently Asked Questions

A complete FAQ is available on the Wireshark web site.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.3
« Antwort #143 am: 30 August, 2018, 09:00 »
Changelog

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-44

    Bluetooth AVDTP dissector crash. Bug 14884. CVE-2018-16058.

    wnpa-sec-2018-45

    Bluetooth Attribute Protocol dissector crash. Bug 14994. CVE-2018-16056.

    wnpa-sec-2018-46

    Radiotap dissector crash. Bug 15022. CVE-2018-16057.

The following bugs have been fixed:

    Wireshark Hangs on startup initializing external capture plugins. Bug 14657.

    Qt: SCTP Analyse Association Dialog: Segmentation fault when clicking twice the Filter Association button. Bug 14970.

    Incorrect presentation of dissected data item (NETMASK) in ISAKMP dissector. Bug 14987.

    Decode NFAPI: CONFIG.request Error. Bug 14988.

    udpdump frame too long error. Bug 14989.

    ISDN - LAPD dissector broken since version 2.5.0. Bug 15018.

    ASTERIX Category 062 / 135 Altitude has wrong value. Bug 15030.

    Wireshark cannot decrypt SSL/TLS session if it was proxied over HTTP tunnel. Bug 15042.

    TLS records in a HTTP tunnel are displayed as "Encrypted Handshake Message". Bug 15043.

    BTATT Dissector: Temperature Measurement: Celsius and Fahrenheit swapped. Bug 15058.

    Diameter AVP User Location Info, Mobile Network Code decoded not correctly. Bug 15068.

    Heartbeat message "Info" displayed without comma separator. Bug 15079.

New and Updated Features

There are no new features in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

ASTERIX, Bluetooth, Bluetooth ATT, Bluetooth AVDTP, DHCP, DTLS, E.212, FP, GSM A RR, HTTP, HTTP2, IEEE 802.11, ISAKMP, ISDN, K12, NFAPI, Nordic BLE, PFCP, Radiotap, SSL, Steam IHS Discovery, and TLS 1.3
New and Updated Capture File Support

pcapng
New and Updated Capture Interfaces support

ciscodump, udpdump

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.9
« Antwort #144 am: 30 August, 2018, 10:00 »
Changelog

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-44

    Bluetooth AVDTP dissector crash. Bug 14884. CVE-2018-16058.

    wnpa-sec-2018-45

    Bluetooth Attribute Protocol dissector crash. Bug 14994. CVE-2018-16056.

    wnpa-sec-2018-46

    Radiotap dissector crash. Bug 15022. CVE-2018-16057.

The following bugs have been fixed:

    Incorrect presentation of dissected data item (NETMASK) in ISAKMP dissector. Bug 14987.
    udpdump frame too long error. Bug 14989.
    ASTERIX Category 062 / 135 Altitude has wrong value. Bug 15030.
    Wireshark cannot decrypt SSL/TLS session if it was proxied over HTTP tunnel. Bug 15042.
    TLS records in a HTTP tunnel are displayed as "Encrypted Handshake Message". Bug 15043.
    BTATT Dissector: Temperature Measurement: Celsius and Fahrenheit swapped. Bug 15058.
    Diameter AVP User Location Info, Mobile Network Code decoded not correctly. Bug 15068.
    Heartbeat message "Info" displayed without comma separator. Bug 15079.
    DTAP CC Start DTMF keypad information parsing error. Bug 15088.

2.2. New and Updated Features

There are no new features in this release.

2.3. New Protocol Support

There are no new protocols in this release.

2.4. Updated Protocol Support

ASTERIX, Bluetooth ATT, Bluetooth AVDTP, DHCP, DTLS, E.212, HTTP, ISAKMP, K12, Nordic BLE, Radiotap, and SSL

2.5. New and Updated Capture File Support

pcapng

2.6. New and Updated Capture Interfaces support

ciscodump udpdump

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.4
« Antwort #145 am: 12 Oktober, 2018, 09:07 »
Changelog

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-47

    MS-WSP dissector crash. Bug 15119. CVE-2018-18227.

    wnpa-sec-2018-48

    Steam IHS Discovery dissector memory leak. Bug 15171. CVE-2018-18226.

    wnpa-sec-2018-49

    CoAP dissector crash. Bug 15172. CVE-2018-18225.

    wnpa-sec-2018-50

    OpcUA dissector crash. CVE-2018-12086.

The following bugs have been fixed:

    HTTP2 dissector decodes first SSL record only. Bug 11173.

    Undocumented sub-option for -N option in man page and tshark -N help. Bug 14826.

    Mishandling of Port Control Protocol option padding. Bug 14950.

    MGCP: parameter lines are case-insensitive. Bug 15008.

    Details of 2nd sub-VSA in bundled RADIUS VSA are incorrect. Bug 15073.

    Heuristic DPLAY dissector fails to recognize DPLAY packets. Bug 15092.

    gsm_rlcmac_dl dissector exception. Bug 15112.

    dfilter_buttons file under user-created profile. Bug 15114.

    Filter buttons disappear when using pre-2.6 profile. Bug 15121.

    PROFINET Information element AM_DeviceIdentification in Asset Management Info block is decoded wrongly. Bug 15140.

    Hw dest addr column shows incorrect address. Bug 15144.

    Windows dumpcap -i TCP@<ip-address> fails on pcapng stream. Bug 15149.

    Wildcard expansion doesn’t work on Windows 10 for command-line programs in cmd.exe or PowerShell. Bug 15151.

    SSL Reassembly Error New fragment past old data limits. Bug 15158.

New and Updated Features

There are no new features in this release.
New Protocol Support

There are no new protocols in this release.
Updated Protocol Support

ASN.1 PER, Bluetooth HCI_SCO, CoAP, DPLAY, IEEE 802.11, Kafka, Message Analyzer, MGCP, MS-WSP, Netmon, OpcUa, PCP, PNIO, RADIUS, Steam IHS Discovery, and TLS
New and Updated Capture File Support

There is no new or updated capture file support in this release.

Ascend and pcapng
New and Updated Capture Interfaces support

There is no new or updated capture file support in this release.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.10
« Antwort #146 am: 12 Oktober, 2018, 17:00 »
Changelog

2. What’s New
2.1. Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-47

    MS-WSP dissector crash. Bug 15119. CVE-2018-18227.

    wnpa-sec-2018-50

    OpcUA dissector crash. CVE-2018-12086.

The following bugs have been fixed:

    HTTP2 dissector decodes first SSL record only. Bug 11173.
    Undocumented sub-option for -N option in man page and tshark -N help. Bug 14826.
    Mishandling of Port Control Protocol option padding. Bug 14950.
    MGCP: parameter lines are case-insensitive. Bug 15008.
    details of 2nd sub-VSA in bundled RADIUS VSA are incorrect. Bug 15073.
    Heuristic DPLAY dissector fails to recognize DPLAY packets. Bug 15092.
    gsm_rlcmac_dl dissector exception. Bug 15112.
    Buildbot crash output: fuzz-2018-09-07-29306.pcap. Bug 15119.
    Wildcard expansion doesn’t work on Windows 10 for command-line programs in cmd.exe or PowerShell. Bug 15151.
    SSL Reassembly Error New fragment past old data limits. Bug 15158.

2.2. New and Updated Features

There are no new features in this release.
2.3. New Protocol Support

There are no new protocols in this release.
2.4. Updated Protocol Support

ASN.1 PER, CIP, DPLAY, HTTP, MGCP, MS-WSP, OpcUa, PCP, RADIUS, and TLS
2.5. New and Updated Capture File Support

Ascend, and pcapng
2.6. New and Updated Capture Interfaces support

There are no new or updated capture interfaces supported in this release.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.4.11
« Antwort #147 am: 29 November, 2018, 05:53 »
Changelog

The following vulnerabilities have been fixed:

    wnpa-sec-2018-51 The Wireshark dissection engine could crash. Bug 14466. CVE-2018-19625.
    wnpa-sec-2018-52 The DCOM dissector could crash. Bug 15130. CVE-2018-19626.
    wnpa-sec-2018-53 The LBMPDM dissector could crash. Bug 15132. CVE-2018-19623.
    wnpa-sec-2018-54 The MMSE dissector could go into an infinite loop. Bug 15250. CVE-2018-19622.
    wnpa-sec-2018-55 The IxVeriWave file parser could crash. Bug 15279. CVE-2018-19627.
    wnpa-sec-2018-56 The PVFS dissector could crash. Bug 15280. CVE-2018-19624.

The following bugs have been fixed:

    VoIP Calls dialog doesn’t include RTP stream when preparing a filter. Bug 13440.
    Wireshark installs on macOS with permissions for /Library/Application Support/Wireshark that are too restrictive. Bug 14335.
    Closing Enabled Protocols dialog crashes wireshark. Bug 14349.
    Encrypted Alerts corresponds to a wrong selection in the packet bytes pane. Bug 14712.
    MATE unable to extract fields for PDU. Bug 15208.
    Malformed Packet: SV. Bug 15224.
    ISUP (ANSI) packets malformed in WS versions later than 2.4.8. Bug 15236.
    Handover candidate enquire message not decoded. Bug 15237.
    MLE security suite display incorrect. Bug 15288.
    Message for incorrect IPv4 option lengths is incorrect. Bug 15290.
    TACACS+ dissector does not properly reassemble large accounting messages. Bug 15293.
    NLRI of S-PMSI A-D BGP route not being displayed. Bug 15307.

2.2. New and Updated Features

There are no new features in this release.
2.3. New Protocol Support

There are no new protocols in this release.
2.4. Updated Protocol Support

BGP, DCOM, GSM A BSSMAP, IEEE 802.11 Radiotap, ISUP, LBMPDM, LISP, MLE, MMSE, PVFS, SLL, SSL/TLS, SV, and TACACS+
2.5. New and Updated Capture File Support

3GPP TS 32.423 Trace, and IxVeriWave

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.6.5
« Antwort #148 am: 29 November, 2018, 06:06 »
Changelog

What’s New

    The Windows installers now ship with Qt 5.9.7. Previously they shipped with Qt 5.9.5.

Bug Fixes

The following vulnerabilities have been fixed:

    wnpa-sec-2018-51 The Wireshark dissection engine could crash. Bug 14466. CVE-2018-19625.

    wnpa-sec-2018-52 The DCOM dissector could crash. Bug 15130. CVE-2018-19626.

    wnpa-sec-2018-53 The LBMPDM dissector could crash. Bug 15132. CVE-2018-19623.

    wnpa-sec-2018-54 The MMSE dissector could go into an infinite loop. Bug 15250. CVE-2018-19622.

    wnpa-sec-2018-55 The IxVeriWave file parser could crash. Bug 15279. CVE-2018-19627.

    wnpa-sec-2018-56 The PVFS dissector could crash. Bug 15280. CVE-2018-19624.

    wnpa-sec-2018-57 The ZigBee ZCL dissector could crash. Bug 15281. CVE-2018-19628.

The following bugs have been fixed:

    VoIP Calls dialog doesn’t include RTP stream when preparing a filter. Bug 13440.

    Wireshark installs on macOS with permissions for /Library/Application Support/Wireshark that are too restrictive. Bug 14335.

    Closing Enabled Protocols dialog crashes wireshark. Bug 14349.

    Unable to Export Objects → HTTP after sorting columns. Bug 14545.

    DNS Response to NS query shows as malformed packet. Bug 14574.

    Encrypted Alerts corresponds to a wrong selection in the packet bytes pane. Bug 14712.

    Wireshark crashes/asserts with Qt 5.11.1 and assert/debugsymbols enabled. Bug 15014.

    ESP will not decode since 2.6.2 - works fine in 2.4.6 or 2.4.8. Bug 15056.

    text2pcap generates malformed packets when TCP, UDP or SCTP headers are added together with IPv6 header. Bug 15194.

    Wireshark tries to decode EAP-SIM Pseudonym Identity. Bug 15196.

    Infinite read loop when extcap exits with error and error message. Bug 15205.

    MATE unable to extract fields for PDU. Bug 15208.

    Malformed Packet: SV. Bug 15224.

    OPC UA Max nesting depth exceeded for valid packet. Bug 15226.

    TShark 2.6 does not print GeoIP information. Bug 15230.

    ISUP (ANSI) packets malformed in WS versions later than 2.4.8. Bug 15236.

    Handover candidate enquire message not decoded. Bug 15237.

    TShark piping output in a cmd or PowerShell prompt stops working when GeoIP is enabled. Bug 15248.

    ICMPv6 with routing header incorrectly placed. Bug 15270.

    IEEE 802.11 Vendor Specific fixed fields display as malformed packets. Bug 15273.

    text2pcap -4 and -6 option should require -i as well. Bug 15275.

    text2pcap direction sensitivity does not affect dummy ethernet addresses. Bug 15287.

    MLE security suite display incorrect. Bug 15288.

    Message for incorrect IPv4 option lengths is incorrect. Bug 15290.

    TACACS+ dissector does not properly reassemble large accounting messages. Bug 15293.

    NLRI of S-PMSI A-D BGP route not being displayed. Bug 15307.

New and Updated Features

There are no new features in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

BGP, DCERPC, DCOM, DNS, EAP, ESP, GSM A BSSMAP, IEEE 802.11, IEEE 802.11 Radiotap, IPv4, IPv6, ISUP, LBMPDM, LISP, MLE, MMSE, OpcUa, PVFS, SLL, SSL/TLS, SV, TACACS+, TCAP, Wi-SUN, XRA, and ZigBee ZCL

New and Updated Capture File Support

3GPP TS 32.423 Trace and IxVeriWave

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 162617
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 2.9.0 Dev
« Antwort #149 am: 13 Dezember, 2018, 12:19 »
Changelog

New features:

The Windows .exe installers now ship with Npcap instead of WinPcap.
Conversation timestamps are supported for UDP/UDP-Lite protocols
TShark now supports the -G elastic-mapping option which generates an ElasticSearch mapping file.
The “Capture Information” dialog has been added back (Bug 12004[2]).
The Ethernet and IEEE 802.11 dissectors no longer validate the frame check sequence (checksum) by default.
The TCP dissector gained a new “Reassemble out-of-order segments” preference to fix dissection and decryption issues in case TCP segments are received out-of-order. See the User’s Guide, chapter TCP Reassembly for details.
Decryption support for the new WireGuard dissector (Bug 15011[3], requires Libgcrypt 1.8).
The BOOTP dissector has been renamed to DHCP. With the exception of “bootp.dhcp”, the old “bootp.*” display filter fields are still supported but may be removed in a future release.
The SSL dissector has been renamed to TLS. As with BOOTP the old “ssl.*” display filter fields are supported but may be removed in a future release.
Coloring rules, IO graphs, Filter Buttons and protocol preference tables can now be copied from other profiles using a button in the corresponding configuration dialogs.
APT-X has been renamed to aptX.
When importing from hex dump, it’s now possible to add an ExportPDU header with a payload name. This calls the specific dissector directly without lower protocols.
The sshdump and ciscodump extcap interfaces can now use a proxy for the SSH connection.
Dumpcap now supports the -a packets:NUM and -b packets:NUM options.
Wireshark now includes a “No Reassembly” configuration profile.
Wireshark now supports the Russian language.
The build system now supports AppImage packages.
The Windows installers now ship with Qt 5.12.0. Previously they shipped with Qt 5.9.7.

Removed Features and Support:

The legacy (GTK+) user interface has been removed and is no longer supported.
Wireshark requires Qt 5.2 or later. Qt 4 is no longer supported.
Wireshark requires GLib 2.32 or later.
Building Wireshark requires CMake. Autotools is no longer supported.
TShark’s -z compare option was removed.

New File Format Decoding Support:

Ruby Marshal format

New Protocol Support:

Apple Wireless Direct Link (AWDL), BLIP Couchbase Mobile (BLIP), CDMA 2000, Cisco Meraki Discovery Protocol (MDP), Distributed Ruby (DRb), DXL, E1AP (5G), EVS (3GPP TS 26.445 A.2 EVS RTP), Exablaze trailers, General Circuit Services Notification Application Protocol (GCSNA), GLOW Lawo Emberplus Data format, GSM-R (User-to-User Information Element usage), HI3CCLinkData, ISO 13400-2 Diagnostic communication over Internet Protocol (DoIP), ITU-t X.696 Octet Encoding Rules (OER), Local Number Portability Database Query Protocol (ANSI), MsgPack, NGAP (5G), NR (5G) PDCP, Osmocom Generic Subscriber Update Protocol (GSUP), PKCS#10 (RFC2986 Certification Request Syntax), PROXY (v2), S101 Lawo Emberplus transport frame, Secure Reliable Transport Protocol (SRT), Spirent Test Center Signature decoding for Ethernet and FibreChannel (STCSIG, disabled by default), Sybase-specific portions of TDS, systemd Journal Export, TeamSpeak 3 DNS, TPM 2.0, Ubiquiti Discovery Protocol (UBDP), WireGuard, and XnAP (5G)

Updated Protocol Support:

Too many protocols have been updated to list here.

New and Updated Capture File Support:

RFC 7468 (PEM), Ruby marshal object files, systemd Journal Export, and Unigraf DPA-400 DisplayPort AUX channel monitor

New and Updated Capture Interfaces support:

dpauxmon, an external capture interface (extcap) that captures DisplayPort AUX channel data from linux kernel drivers.
sdjournal, an extcap that captures systemd journal entries.

Major API Changes:

Lua: the various logging functions (debug, info, message, warn and critical) have been removed. Use the print function instead for debugging purposes.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )