Autor Thema: Wireshark (Ex-Ethereal) ...  (Gelesen 15023 mal)

0 Mitglieder und 1 Gast betrachten dieses Thema.

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.11.1 Dev
« Antwort #60 am: 16 November, 2013, 14:30 »
Whats new: >>

# Bug Fixes
* "On-the-wire" packet lengths are limited to 65535 bytes.
* "Follow TCP Stream" shows only the first HTTP req+res.
* Files with pcap-ng Simple Packet Blocks can't be read.
# New and Updated Features
* Qt port:
- The Follow Stream dialog now supports packet and TCP stream selection.
- A Flow Graph (sequence diagram) dialog has been added.
- The main window now respects geometry preferences.
* Wireshark now uses the Qt application framework. The new UI should provide a significantly better user experience, particularly on Mac OS X and Windows.
* A more flexible, modular memory manger (wmem) has been added. It was available experimentally in 1.10 but is now mature and has mostly replaced the old API.
* Expert info is now filterable and now requires a new API.
* The Windows installer now uninstalls the previous version of Wireshark silently. You can still run the uninstaller manually beforehand if you wish to run it interactively.
* The "Number" column shows related packets and protocol conversation spans (Qt only).
* When manipulating packets with editcap using the -C <choplen> and/or -s <snaplen> options, it is now possible to also adjust the original frame length using the -L option.
* You can now pass the -C <choplen> option to editcap multiple times, which allows you to chop bytes from the beginning of a packet as well as at the end of a packet in a single step.
* You can now specify an optional offset to the -C option for editcap, which allows you to start chopping from that offset instead of from the absolute packet beginning or end.
* "malformed" display filter has been renamed to "_ws.malformed". A handful of other filters have been given the "_ws." prefix to note they are Wireshark application specific filters and not dissector filters.
# New Protocol Support
* 802.1AE Secure tag, ASTERIX, ATN, BT 3DS, CARP, Cisco MetaData, ELF file format, EXPORTED PDU, HTTP2, IDRP, ILP, Kafka, MBIM, MiNT, MP4 / ISOBMFF file format, NXP PN532 HCI, OpenFlow, Picture Transfer Protocol Over IP, QUIC (Quick UDP Internet Connections), SEL RTAC (Real Time Automation Controller) EIA-232 Serial-Line Dissection, Sippy RTPproxy, STANAG 4607, STANAG 5066 SIS, Tinkerforge, UDT, URL Encoded Form Data, WHOIS, and Wi-Fi Display
# Updated Protocol Support
* Too many protocols have been updated to list here.
# New and Updated Capture File Support
* Netscaler 2.6, and STANAG 4607

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.10.4
« Antwort #61 am: 17 Dezember, 2013, 22:00 »
Whats new: >>

2.1. Bug Fixes

The following vulnerabilities have been fixed.

    wnpa-sec-2013-66

    The SIP dissector could go into an infinite loop. Discovered by Alain Botti. (Bug 9388)

    Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11

    CVE-2013-7112

    wnpa-sec-2013-67

    The BSSGP dissector could crash. Discovered by Laurent Butti. (Bug 9488)

    Versions affected: 1.10.0 to 1.10.3

    CVE-2013-7113

    wnpa-sec-2013-68

    The NTLMSSP v2 dissector could crash. Discovered by Garming Sam.

    Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11

    CVE-2013-7114

The following bugs have been fixed:

    "On-the-wire" packet lengths are limited to 65535 bytes. (Bug 8808, ws-buglink:9390)
    Tx MCS set is not interpreted properly in WLAN beacon frame. (Bug 8894)
    VoIP Graph Analysis window - some calls are black. (Bug 8966)
    Wireshark fails to decode single-line, multiple Contact: URIs in SIP responses. (Bug 9031)
    epan/follow.c - Incorrect "bytes missing in capture file" in "check_fragments" due to an unsigned int wraparound?. (Bug 9112)
    gsm_map doesn’t decode MAPv3 reportSM-DeliveryStatus result. (Bug 9382)
    Incorrect NFSv4 FATTR4_SECURITY_LABEL value. (Bug 9383)
    Timestamp decoded for Gigamon trailer is not padded correctly. (Bug 9433)
    SEL Fast Message Bug-fix for Signed 16-bit Integer Fast Meter Messages. (Bug 9435)
    DNP3 Bug Fix for Analog Data Sign Bit Handling. (Bug 9442)
    GSM SMS User Data header fill bits are wrong when using a 7 bits ASCII / IA5 encoding. (Bug 9478)
    WCDMA RLC dissector cannot assemble PDUs with SNs skipped and wrap-arounded. (Bug 9505)
    DTLS: fix buffer overflow in mac check. (Bug 9512)
    [PATCH] Correct data length in SCSI_DATA_IN packets (within iSCSI). (Bug 9521)
    GSM SMS UDH EMS control expects 4 octets instead of 3 with OPTIONAL 4th. (Bug 9550)
    Fix "decode as …" for packet-time.c. (Bug 9563)

Quelle : https://www.wireshark.org/docs/relnotes/wireshark-1.10.4.html

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.10.5
« Antwort #62 am: 21 Dezember, 2013, 11:00 »
What’s New
2.1. Bug Fixes

The following bugs have been fixed:

    Wireshark stops showing new packets but dumpcap keeps writing them to the temp file. (Bug 9571)
    Wireshark 1.10.4 shuts down when promiscuous mode is unchecked. (Bug 9577)
    Homeplug dissector bug: STATUS_ACCESS_VIOLATION: dissector accessed an invalid memory address. (Bug 9578)

2.2. New and Updated Features

There are no new features in this release.
2.3. New Protocol Support

There are no new protocols in this release.
2.4. Updated Protocol Support

GSM BSSMAP, GSM BSSMAP LE, GSM SMS, Homeplug, NAS-EPS, and SGSAP
2.5. New and Updated Capture File Support

There is no updated capture file support in this release.

Quelle : https://www.wireshark.org/docs/relnotes/wireshark-1.10.5.html

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.10.6
« Antwort #63 am: 08 März, 2014, 10:00 »
Whats new:>>

Bug Fixes:
The following vulnerabilities have been fixed:
wnpa-sec-2014-01
The NFS dissector could crash.
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2281
wnpa-sec-2014-02
The M3UA dissector could crash.
Versions affected: 1.10.0 to 1.10.5
CVE-2014-2282
wnpa-sec-2014-03
The RLC dissector could crash. (Bug 9730)
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2283
wnpa-sec-2014-04
The MPEG file parser could overflow a buffer.
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2299
The following bugs have been fixed:
Customized OUI is not recognized correctly during dissection. (Bug 9122)
Properly decode CAPWAP Data Keep-Alives. (Bug 9165)
Build failure with GTK 3.10 - GTK developers have gone insane. (Bug 9340)
SIGSEGV/SIGABRT during free of TvbRange using a chained dissector in lua. (Bug 9483)
MPLS dissector no longer registers itself in "ppp.protocol" table. (Bug 9492)
Tshark doesn’t display the longer data fields (mbtcp). (Bug 9572)
DMX-CHAN disector does not clear strbuf between rows. (Bug 9598)
Dissector bug, protocol SDP: proto.c:4214: failed assertion "length >= 0". (Bug 9633)
False error: capture file appears to be damaged or corrupt. (Bug 9634)
SMPP field source_telematics_id field length different from spec. (Bug 9649)
Lua: bitop library is missing in Lua 5.2. (Bug 9720)
GTPv1-C / MM Context / Authentication quintuplet / RAND is not correct. (Bug 9722)
Lua: ProtoField.new() is buggy. (Bug 9725)
Lua: ProtoField.bool() VALUESTRING argument is not optional but was supposed to be. (Bug 9728)
Problem with CAPWAP Wireshark Dissector. (Bug 9752)
nas-eps dissector: CS Service notification dissection stops after Paging identity IE. (Bug 9789)
New and Updated Features:
IPv4 checksum verfification is now disabled by default.
Updated Protocol Support:
AppleTalk, CAPWAP, DMX-CHAN, DSI, DVB-CI, ESS, GTPv1, IEEE 802a, M3UA, Modbus/TCP, NAS-EPS, NFS, OpenSafety, SDP, and SMPP
New and Updated Capture File Support:
libpcap, MPEG, and pcap-ng

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.11.3
« Antwort #64 am: 16 April, 2014, 06:00 »
Whats new: >>

2.1. Bug Fixes

The following bugs have been fixed:

    "On-the-wire" packet lengths are limited to 65535 bytes. (Bug 8808, ws-buglink:9390)
    "Follow TCP Stream" shows only the first HTTP req+res. (Bug 9044)
    Files with pcap-ng Simple Packet Blocks can’t be read. (Bug 9200)
    MPLS-over-PPP isn’t recognized. (Bug 9492)

2.2. New and Updated Features

The following features are new (or have been significantly updated) since version 1.11.2:

    Qt port:
        The About dialog has been added
        The Capture Interfaces dialog has been added.
        The Decode As dialog has been added. It managed to swallow up the User Specified Decodes dialog as well.
        The Export PDU dialog has been added.
        Several SCTP dialogs have been added.
        The statistics tree (the backend for many Statistics and Telephony menu items) dialog has been added.
        The I/O Graph dialog has been added.
        French translation has updated.

The following features are new (or have been significantly updated) since version 1.11.1:

    Mac OS X packaging has been improved.

The following features are new (or have been significantly updated) since version 1.11.0:

    Dissector output may be encoded as UTF-8. This includes TShark output.

    Qt port:
        The Follow Stream dialog now supports packet and TCP stream selection.
        A Flow Graph (sequence diagram) dialog has been added.
        The main window now respects geometry preferences.

The following features are new (or have been significantly updated) since version 1.10:

    Wireshark now uses the Qt application framework. The new UI should provide a significantly better user experience, particularly on Mac OS X and Windows.
    The Windows installer now uninstalls the previous version of Wireshark silently. You can still run the uninstaller manually beforehand if you wish to run it interactively.
    Expert information is now filterable when the new API is in use.
    The "Number" column shows related packets and protocol conversation spans (Qt only).
    When manipulating packets with editcap using the -C <choplen> and/or -s <snaplen> options, it is now possible to also adjust the original frame length using the -L option.
    You can now pass the -C <choplen> option to editcap multiple times, which allows you to chop bytes from the beginning of a packet as well as at the end of a packet in a single step.
    You can now specify an optional offset to the -C option for editcap, which allows you to start chopping from that offset instead of from the absolute packet beginning or end.
    "malformed" display filter has been renamed to "_ws.malformed". A handful of other filters have been given the "_ws." prefix to note they are Wireshark application specific filters and not dissector filters.

2.3. Removed dissectors

    The ASN1 plugin has been removed as it’s deemed obsolete.
    The GNM dissector has been removed as it was never used.

2.4. New Protocol Support

29West, 802.1AE Secure tag, ACR122, ADB Client-Server, AllJoyn, Apple PKTAP, Aruba Instant AP, ASTERIX, ATN, Bencode, Bluetooth 3DS, Bluetooth HSP, Bluetooth Linux Monitor Transport, Bluetooth Low Energy, Bluetooth Low Energy RF Info, CARP, CFDP, Cisco MetaData, DCE/RPC MDSSVC, DeviceNet, ELF file format, EXPORTED PDU, FINGER, HDMI, HTTP2, IDRP, IEEE 1722a, ILP, iWARP Direct Data Placement and Remote Direct Memory Access Protocol, Kafka, Kyoto Tycoon, Landis & Gyr Telegyr 8979, LBM, LBMC, LBMPDM, LBMPDM-TCP, LBMR, LBT-RM, LBT-RU, LBT-TCP, Lightweight Mesh (v1.1.1), Linux netlink, Linux netlink netfilter, Linux netlink sock diag, Linux rtnetlink (route netlink), Logcat, MBIM, MiNT, MP4 / ISOBMFF file format, MQ Telemetry Transport Protocol, Novell PKIS certificate extensions, NXP PN532 HCI, Open Sound Control, OpenFlow, Pathport, PDC, Picture Transfer Protocol Over IP, PKTAP, Private Data Channel, QUIC (Quick UDP Internet Connections), SAE J1939, SEL RTAC (Real Time Automation Controller) EIA-232 Serial-Line Dissection, Sippy RTPproxy, SMB-Direct, STANAG 4607, STANAG 5066 DTS, STANAG 5066 SIS, Tinkerforge, Ubertooth, UDT, URL Encoded Form Data, USB Communications and CDC Control, USB Device Firmware Upgrade, VP8, WHOIS, Wi-Fi Display, and ZigBee Green Power profile
2.5. Updated Protocol Support

Too many protocols have been updated to list here.
2.6. New and Updated Capture File Support

Netscaler 2.6, STANAG 4607, and STANAG 5066 Data Transfer Sublayer
2.7. Major API Changes

The libwireshark API has undergone some major changes:

    A more flexible, modular memory manager (wmem) has been added. It was available experimentally in 1.10 but is now mature and has mostly replaced the old emem API (which is deprecated).
    A new API for expert information has been added, replacing the old one.
    The tvbuff API has been cleaned up: tvb_length has been renamed to tvb_captured_length for clarity, and tvb_get_string and tvb_get_stringz have been deprecated in favour of tvb_get_string_enc and tvb_get_stringz_enc.

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.10.7
« Antwort #65 am: 23 April, 2014, 18:00 »
Whats new: >>

Bug Fixes:

The following vulnerabilities have been fixed:
wnpa-sec-2014-06
The RTP dissector could crash. (Bug 9885)
Versions affected: 1.10.0 to 1.10.6
CVE-2014-2907

The following bugs have been fixed:

RTP not decoded inside the conversation in v.1.10.1 (Bug 9021)
SIP/SDP: disabled second media stream disables all media streams (Bug 9835)
Lua: trying to get/access a Preference before its registered causes a segfault (Bug 9853)
Some value_string strings contain newlines. (Bug 9878)
Tighten the NO_MORE_DATA_CHECK macros (Bug 9932)
Fix crash when calling "MAP Summary" dialog when no file is open (Bug 9934)
Fix comparing a sequence number of TCP fragment when its value wraps over uint32_t limit (Bug 9936)

Updated Protocol Support:

ANSI A, DVB-CI, GSM DTAP, GSM MAP, IEEE 802.11, LCSAP, LTE RRC, MAC LTE, Prism, RTP, SDP, SIP, and TCP

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.10.8
« Antwort #66 am: 13 Juni, 2014, 12:26 »
Release Notes
# The following vulnerabilities have been fixed.
- The frame metadissector could crash.
# The following bugs have been fixed:
- VoIP flow graph crash upon opening.
- Tshark with "-F pcap" still generates a pcapng file.
- IPv6 Next Header 0x3d recognized as SHIM6.
- Failed to export pdml on large pcap.
- TCAP: set a fence on info column after calling sub dissector
- Dissector bug in JSON protocol.
- GSM RLC MAC: do not skip too many lines of the CSN_DESCR when the field is missing
- Wireshark PEEKREMOTE incorrectly decoding QoS data packets from Cisco Sniffer APs.
- IEEE 802.11: fix dissection of HT Capabilities
# Updated Protocol Support
- CIP, EtherNet/IP, GSM RLC MAC, IEEE 802.11, IPv6, and TCAP
# New and Updated Capture File Support
- pcap-ng, and PEEKREMOTE
[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.12.0 RC3
« Antwort #67 am: 24 Juli, 2014, 06:00 »
Whats new: >>

# The following bugs have been fixed:

* "On-the-wire" packet lengths are limited to 65535 bytes.
* "Follow TCP Stream" shows only the first HTTP request and response.
* Files with pcap-ng Simple Packet Blocks can't be read.
* MPLS-over-PPP isn't recognized.

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.12.0 Final
« Antwort #68 am: 01 August, 2014, 11:00 »
Release Notes

BUG FIXES:
"On-the-wire" packet lengths are limited to 65535 bytes. (Bug 8808, Bug 9390)
"Follow TCP Stream" shows only the first HTTP request and response. (Bug 9044)
Files with pcap-ng Simple Packet Blocks can’t be read. (Bug 9200)
MPLS-over-PPP isn’t recognized. (Bug 9492)
NEW AND UPDATED FEATURES:
The Windows installer now uninstalls the previous version of Wireshark silently. You can still run the uninstaller manually beforehand if you wish to run it interactively.
Expert information is now filterable when the new API is in use.
The "Number" column shows related packets and protocol conversation spans (Qt only).
When manipulating packets with editcap using the -C and/or -s options, it is now possible to also adjust the original frame length using the -L option.
You can now pass the -C option to editcap multiple times, which allows you to chop bytes from the beginning of a packet as well as at the end of a packet in a single step.
You can now specify an optional offset to the -C option for editcap, which allows you to start chopping from that offset instead of from the absolute packet beginning or end.
"malformed" display filter has been renamed to "_ws.malformed". A handful of other filters have been given the "_ws." prefix to note they are Wireshark application specific filters and not dissector filters.
The Kerberos dissector has been replaced with an auto generated one from ASN1 protocol description, changing a lot of filter names.
Additionally the Windows installers have an extra component: a preview of the upcoming user interface for Wireshark 2.0.
The following features are new (or have been significantly updated) since version 1.11.3:
Transport name resolution is now disabled by default.
Support has been added for all versions of the DCBx protocol.
Cleanup of LLDP code, all dissected fields are now navigable.
The following features are new (or have been significantly updated) since version 1.11.2:
Qt port:
The About dialog has been added
The Capture Interfaces dialog has been added.
The Decode As dialog has been added. It managed to swallow up the User Specified Decodes dialog as well.
The Export PDU dialog has been added.
Several SCTP dialogs have been added.
The statistics tree (the backend for many Statistics and Telephony menu items) dialog has been added.
The I/O Graph dialog has been added.
French translation has updated.
The following features are new (or have been significantly updated) since version 1.11.0:
Dissector output may be encoded as UTF-8. This includes TShark output.
Qt port:
The Follow Stream dialog now supports packet and TCP stream selection.
A Flow Graph (sequence diagram) dialog has been added.
The main window now respects geometry preferences.
REMOVED DISSECTORS:
The ASN1 plugin has been removed as it’s deemed obsolete.
The GNM dissector has been removed as it was never used.
The Kerberos hand made dissector has been replaced by one generated from ASN1 code.
PLATFORM SUPPORT:
Support for Windows XP has been deprecated. We will make an effort to support it for as long as possible but our ability to do so depends on upstream packages and other factors beyond our control.
U3 packages are no longer supported or provided.
NEW PROTOCOL SUPPORT:
29West, 802.1AE Secure tag, A21, ACR122, ADB Client-Server, AllJoyn, Apple PKTAP, Aruba Instant AP, ASTERIX, ATN, Bencode, Bluetooth 3DS, Bluetooth HSP, Bluetooth Linux Monitor Transport, Bluetooth Low Energy, Bluetooth Low Energy RF Info, CARP, CFDP, Cisco MetaData, DCE/RPC MDSSVC, DeviceNet, ELF file format, Ethernet Local Management Interface (E-LMI), Ethernet Passive Optical Network (EPON), EXPORTED PDU, FINGER, HDMI, High-Speed LAN Instrument Protocol (HiSLIP), HTTP2, IDRP, IEEE 1722a, ILP, iWARP Direct Data Placement and Remote Direct Memory Access Protocol, Kafka, Kyoto Tycoon, Landis & Gyr Telegyr 8979, LBM, LBMC, LBMPDM, LBMPDM-TCP, LBMR, LBT-RM, LBT-RU, LBT-TCP, Lightweight Mesh (v1.1.1), Link16, Linux netlink, Linux netlink netfilter, Linux netlink sock diag, Linux rtnetlink (route netlink), Logcat, MBIM, Media Agnostic USB (MA USB), MiNT, MP4 / ISOBMFF file format, MQ Telemetry Transport Protocol, MS NLB (Rewrite), Novell PKIS certificate extensions, NXP PN532 HCI, Open Sound Control, OpenFlow, Pathport, PDC, Picture Transfer Protocol Over IP, PKTAP, Private Data Channel, QUIC (Quick UDP Internet Connections), SAE J1939, SEL RTAC (Real Time Automation Controller) EIA-232 Serial-Line Dissection, Sippy RTPproxy, SMB-Direct, SPDY, STANAG 4607, STANAG 5066 DTS, STANAG 5066 SIS, Tinkerforge, Ubertooth, UDT, URL Encoded Form Data, USB Communications and CDC Control, USB Device Firmware Upgrade, VP8, WHOIS, Wi-Fi Display, and ZigBee Green Power profile
NEW AND UPDATED CAPTURE FILE SUPPORT:
Netscaler 2.6, STANAG 4607, and STANAG 5066 Data Transfer Sublayer
MAJOR API CHANGES:
A more flexible, modular memory manager (wmem) has been added. It was available experimentally in 1.10 but is now mature and has mostly replaced the old emem API (which is deprecated).
A new API for expert information has been added, replacing the old one.
The tvbuff API has been cleaned up: tvb_length has been renamed to tvb_captured_length for clarity, and tvb_get_string and tvb_get_stringz have been deprecated in favour of tvb_get_string_enc and tvb_get_stringz_enc.
dissector_try_heuristic() signature has been changed to return heur_dtbl_entry_t to make it possible to save it and use it in subsequent calls to avoid the overhead of going trough the heuristics list.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.12.1
« Antwort #69 am: 17 September, 2014, 09:12 »
Release Notes
BUG FIXES:
The following vulnerabilities have been fixed:
wnpa-sec-2014-13: MEGACO dissector infinite loop. (Bug 10333) CVE-2014-6423
wnpa-sec-2014-14: Netflow dissector crash. (Bug 10370) CVE-2014-6424
wnpa-sec-2014-15: CUPS dissector crash. (Bug 10353) CVE-2014-6425
wnpa-sec-2014-16: HIP dissector infinite loop. CVE-2014-6426
wnpa-sec-2014-17: RTSP dissector crash. (Bug 10381) CVE-2014-6427
wnpa-sec-2014-18: SES dissector crash. (Bug 10454) CVE-2014-6428
wnpa-sec-2014-19: Sniffer file parser crash. (Bug 10461) CVE-2014-6429 CVE-2014-6430 CVE-2014-6431 CVE-2014-6432
The following bugs have been fixed:
Wireshark can crash during remote capture (rpcap) configuration. (Bug 3554, Bug 6922, ws-buglink:7021)
802.11 capture does not decrypt/decode DHCP response. (Bug 8734)
Extra quotes around date fields (FT_ABSOLUTE_TIME) when using -E quote=d or s. (Bug 10213)
No progress line in "VOIP RTP Player". (Bug 10307)
MIPv6 Service Selection Identifier parse error. (Bug 10323)
Probably wrong length check in proto_item_set_end. (Bug 10329)
802.11 BA sequence number decode is broken. (Bug 10334)
wmem_alloc_array() "succeeds" (and clobbers memory) when requested to allocate 0xaaaaaaaa items of size 12. (Bug 10343)
Different dissection results for same file. (Bug 10348)
Mergecap wildcard breaks in version 1.12.0. (Bug 10354)
Diameter TCP reassemble. (Bug 10362)
TRILL NLPID 0xc0 unknown to Wireshark. (Bug 10382)
BTLE advertising header flags (RxAdd/TxAdd) dissected incorrectly. (Bug 10384)
Ethernet OAM (CFM) frames including TLV’s are wrongly decoded as malformed. (Bug 10385)
BGP4: Wireshark skipped some potion of AS_PATH. (Bug 10399)
MAC address name resolution is broken. (Bug 10344)
Wrong decoding of RPKI RTR End of Data PDU. (Bug 10411)
SSL/TLS dissector incorrectly interprets length for status_request_v2 hello extension. (Bug 10416)
Misparsed NTP control assignments with empty values. (Bug 10417)
6LoWPAN multicast address decompression problems. (Bug 10426)
Netflow v9 flowset not decoded if options template has zero-length scope section. (Bug 10432)
GUI Hangs when Selecting Path to GeoIP Files. (Bug 10434)
AX.25 dissector prints unprintable characters. (Bug 10439)
6LoWPAN context handling not working. (Bug 10443)
SIP: When export to a CSV, Info is changed to differ. (Bug 10453)
Typo in packet-netflow.c. (Bug 10458)
Incorrect MPEG-TS decoding (OPCR field). (Bug 10446)
UPDATED PROTOCOL SUPPORT:
6LoWPAN, A21, ACR122, Art-Net, AX.25, BGP, BTLE, CAPWAP, DIAMETER, DICOM, DVB-CI, Ethernet OAM, HIP, HiSLIP, HTTP2, IEEE 802.11, MAUSB, MEGACO, MIPv6, MP2T, Netflow, NTP, openSAFETY, OSI, RDM, RPKI RTR, RTSP, SES, SIP, TLS, and Token Ring MAC
NEW AND UPDATED CAPTURE FILE SUPPORT:
DOS Sniffer and NetScaler
[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.99.0 Development
« Antwort #70 am: 08 Oktober, 2014, 13:30 »
Changelog

The following features are new (or have been significantly updated):
The I/O Graph in the Gtk+ UI now supports an unlimited number of data points (up from 100k).
TShark now resets its state when changing files in ring-buffer mode.
Expert Info severities can now be configured.
Wireshark now supports external capture interfaces.
External capture interfaces can be anything from a tcpdump-over-ssh pipe to a program that captures from proprietary or non-standard hardware. This functionality is not available in the Qt UI yet.
Qt port:
The Qt UI is now the default (program name is wireshark).
A Polish translation has been added.
The Interfaces dialog has been added.
The interface list is now updated when interfaces appear or disappear.
The Conversations and Endpoints dialogs have been added.
A Japanese translation has been added.
It is now possible to manage remote capture interfaces.
Windows: taskbar progress support has been added.
Most toolbar actions are in place and work.
More command line options are now supported
New Protocol Support:
ceph, corosync/totemnet, corosync/totemsrp, CP "Cooper" 2179, Dynamic Source Routing (RFC 4728), Generic Network Virtualization Encapsulation (Geneve), IPMI Trace, iSER, KNXnetIP, OptoMMP, S7 Communication, and Stateless Transport Tunneling
Updated Protocol Support
Too many protocols have been updated to list here.
New and Updated Capture File Support
Android logcat text files, and Wireshark now supports
nanosecond timestamp resolution in PCAP-NG files.
Major API Changes:
The libwireshark API has undergone some major changes:
Many of the ep_ and se_ memory allocation routines have been removed.
The (long-since-broken) Python bindings support has been removed. If you want to write dissectors in something other than C, use Lua.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.12.2
« Antwort #71 am: 13 November, 2014, 06:15 »
Release Notes

2. What’s New
2.1. Bug Fixes

The following vulnerabilities have been fixed.

    wnpa-sec-2014-20

    SigComp UDVM buffer overflow. (Bug 10662) CVE-2014-8710

    wnpa-sec-2014-21

    AMQP crash. (Bug 10582) CVE-2014-8711

    wnpa-sec-2014-22

    NCP crashes. (Bug 10552, Bug 10628) CVE-2014-8712 CVE-2014-8713

    wnpa-sec-2014-23

    TN5250 infinite loops. (Bug 10596) CVE-2014-8714

The following bugs have been fixed:

    Wireshark determine packets of MMS protocol as a packets of T.125 protocol. (Bug 10350)
    6LoWPAN Mesh headers not treated as encapsulating address. (Bug 10462)
    UCP dissector bug of operation 31 - PID 0639 not recognized. (Bug 10463)
    iSCSI dissector rejects PDUs with "expected data transfer length" > 16M. (Bug 10469)
    GTPv2: trigging_tree under Trace information has wrong length. (Bug 10470)
    openflow_v1 OFPT_FEATURES_REPLY parsed incorrectly. (Bug 10493)
    Capture files from a remote virtual interface on MacOS X 10.9.5 aren’t dissected correctly. (Bug 10502)
    Problem specifying protocol name for filtering. (Bug 10509)
    LLDP TIA Network Policy Unknown Policy Flag Decode is not correct. (Bug 10512)
    Decryption of DCERPC with Kerberos encryption fails. (Bug 10538)
    Dissection of DECRPC NT sid28 shouldn’t show expert info if tree is null. (Bug 10542)
    Attempt to render an SMS-DELIVER-REPORT instead of an SMS-DELIVER. (Bug 10547)
    IPv6 Calipso option length is not used properly. (Bug 10561)
    The SPDY dissector couldn’t dissecting packet correctly. (Bug 10566)
    IPv6 QuickStart option Nonce is read incorrectly. (Bug 10575)
    IPv6 Mobility Option IPv6 Address/Prefix marks too many bytes for the address/prefix field. (Bug 10576)
    IPv6 Mobility Option Binding Authorization Data for FMIPv6 Authenticator field is read beyond the option data. (Bug 10577)
    IPv6 Mobility Option Mobile Node Link Layer Identifier Link-layer Identifier field is read beyond the option data. (Bug 10578)
    Wrong offset for hf_mq_id_icf1 in packet-mq.c. (Bug 10597)
    Malformed PTPoE announce packet. (Bug 10611)
    IPv6 Permanent Home Keygen Token mobility option includes too many bytes for the token field. (Bug 10619)
    IPv6 Redirect Mobility Option K and N bits are parsed incorrectly. (Bug 10622)
    IPv6 Care Of Test mobility option includes too many bytes for the Keygen Token field. (Bug 10624)
    IPv6 MESG-ID mobility option is parsed incorrectly. (Bug 10625)
    IPv6 AUTH mobility option parses Mobility SPI and Authentication Data incorrectly. (Bug 10626)
    IPv6 DNS-UPDATE-TYPE mobility option includes too many bytes for the MD identity field. (Bug 10629)
    IPv6 Local Mobility Anchor Address mobility option’s code and reserved fields are parsed as 2 bytes instead of 1. (Bug 10630)
    WCCP v.2.01 extended assignment data element parsed wrong. (Bug 10641)
    DNS ISDN RR Sub Address field is read one byte early. (Bug 10650)
    TShark crashes when running with PDML on a specific packet. (Bug 10651)
    DNS A6 Address Suffix field is parsed incorrectly. (Bug 10652)
    DNS response time: calculation incorrect. (Bug 10657)
    SMPP does not display properly the hour field in the Submit_sm Validity Period field. (Bug 10672)
    DNS Name Length for Zone RR on root is 6 and Label Count is 1. (Bug 10674)
    DNS WKS RR Protocol field is read as 4 bytes instead of 1. (Bug 10675)
    IPv6 Mobility Option Context Request reads an extra request. (Bug 10676)

2.2. New and Updated Features

There are no new features in this release.

The Windows installers no longer include previews of Wireshark 2. If you want to try the new user interface, please download a development (1.99) installer.
2.3. New Protocol Support

There are no new protocols in this release.
2.4. Updated Protocol Support

6LoWPAN, AMQP, ANSI IS-637-A, Bluetooth HCI, CoAP, DCERPC (all), DCERPC NT, DNS, GSM MAP, GTPv2, H.223, HPSW, HTTP2, IEEE 802.11, IPv6, iSCSI, Kerberos, LBT-RM, LLDP, MIH, Mobile IPv6, MQ, NCP, OpcUa, OpenFlow, PKTAP, PTPoE, SigComp, SMB2, SMPP, SPDY, Stanag 4607, T.125, UCP, USB CCID, and WCCP
2.5. New and Updated Capture File Support

Catapult DCT2000, HP-UX nettl, Ixia IxVeriWave, pcap, pcap-ng, RADCOM, and Sniffer (DOS)
3. Getting Wireshark

Wireshark source code and installation packages are available from http://www.wireshark.org/download.html.
3.1. Vendor-supplied Packages

Most Linux and Unix vendors supply their own Wireshark packages. You can usually install or upgrade Wireshark using the package management system specific to that platform. A list of third-party packages can be found on the download page on the Wireshark web site.
4. File Locations

Wireshark and TShark look in several different locations for preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations vary from platform to platform. You can use About→Folders to find the default locations on your system.
5. Known Problems

Dumpcap might not quit if Wireshark or TShark crashes. (Bug 1419)

The BER dissector might infinitely loop. (Bug 1516)

Capture filters aren’t applied when capturing from named pipes. (Bug 1814)

Filtering tshark captures with read filters (-R) no longer works. (Bug 2234)

The 64-bit Windows installer does not support Kerberos decryption. (Win64 development page)

Resolving (Bug 9044) reopens (Bug 3528) so that Wireshark no longer automatically decodes gzip data when following a TCP stream.

Application crash when changing real-time option. (Bug 4035)

Hex pane display issue after startup. (Bug 4056)

Packet list rows are oversized. (Bug 4357)

Wireshark and TShark will display incorrect delta times in some cases. (Bug 4985)

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.99.1 Beta
« Antwort #72 am: 11 Dezember, 2014, 17:00 »
Changelog

- You can now show and hide toolbars and major widgets using the View menu.
- You can now set the time display format and precision.
- The byte view widget is much faster, particularly when selecting large reassembled packets.
- The byte view is explorable. Hovering over it highlights the corresponding field and shows a description in the status bar.
- An Italian translation has been added.
- The Summary dialog has been updated and renamed to Capture File Properties.
- The VoIP Calls and SIP Flows dialogs have been added.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.12.3
« Antwort #73 am: 08 Januar, 2015, 07:00 »
Release Notes
What's New

  Bug Fixes

   The following vulnerabilities have been fixed.
     * [1]wnpa-sec-2015-01
       The WCCP dissector could crash. ([2]Bug 10720, [3]Bug 10806)
       [4]CVE-2015-0559, [5]CVE-2015-0560
     * [6]wnpa-sec-2015-02
       The LPP dissector could crash. ([7]Bug 10773) [8]CVE-2015-0561
     * [9]wnpa-sec-2015-03
       The DEC DNA Routing Protocol dissector could crash. ([10]Bug 10724)
       [11]CVE-2015-0562
     * [12]wnpa-sec-2015-04
       The SMTP dissector could crash. ([13]Bug 10823) [14]CVE-2015-0563
     * [15]wnpa-sec-2015-05
       Wireshark could crash while decypting TLS/SSL sessions. Discovered
       by Noam Rathaus. [16]CVE-2015-0564

   The following bugs have been fixed:
     * WebSocket dissector: empty payload causes
       DISSECTOR_ASSERT_NOT_REACHED. ([17]Bug 9332)
     * Wireshark crashes if Lua heuristic dissector returns true. ([18]Bug
       10233)
     * Display MEP ID in decimal in OAM Y.1731 Synthetic Loss Message and
       Reply PDU. ([19]Bug 10500)
     * TCP Window Size incorrectly reported in Packet List. ([20]Bug
       10514)
     * Status bar "creeps" to the left a few pixels every time Wireshark
       is opened. ([21]Bug 10518)
     * E-LMI Message type. ([22]Bug 10531)
     * SMTP decoder can dump binary data to terminal in TShark. ([23]Bug
       10536)
     * PTPoE dissector gets confused by packets that include an FCS.
       ([24]Bug 10611)
     * IPv6 Vendor Specific Mobility Option includes the next mobility
       option type. ([25]Bug 10618)
     * Save PCAP to PCAPng with commentary fails. ([26]Bug 10656)
     * Display filter "frame contains bytes [2342]" causes a crash.
       ([27]Bug 10690)
     * Multipath TCP: checksum displayed when it's not there. ([28]Bug
       10692)
     * LTE APN-AMBR is decoded incorrectly. ([29]Bug 10699)
     * DNS NAPTR RR Replacement Length is incorrect. ([30]Bug 10700)
     * IPv6 Experimental mobility header data is interpreted as options.
       ([31]Bug 10703)
     * Dissector bug, protocol SPDY: tvbuff.c:610: failed assertion "tvb
       && tvb->initialized". ([32]Bug 10704)
     * BGP: Incorrect decoding AS numbers when mixed AS size. ([33]Bug
       10742)
     * BGP update community - incorrect decoding. ([34]Bug 10746)
     * Setting a 6LoWPAN context generates a Wireshark crash. ([35]Bug
       10747)
     * FC is not dissected (protocol UNKNOWN). ([36]Bug 10751)
     * Crash when displaying several times INFO column. ([37]Bug 10755)
     * Decoding of longitude value in LCSAP (3GPP TS 29.171) is incorrect.
       ([38]Bug 10767)
     * Crash when enabling FCoIB manual settings without filling address
       field. ([39]Bug 10796)
     * RSVP RECORD_ROUTE IPv4 Subobject Flags field incorrect decoding.
       ([40]Bug 10799)
     * Wireshark Lua engine can't access protocol field type. ([41]Bug
       10801)
     * Field Analysis of OpenFlow v1.4 OFPT_SET_ASYNC. ([42]Bug 10808)
     * Lua: getting fieldinfo.value for FT_NONE causes assert. ([43]Bug
       10815)

  New and Updated Features

   There are no new features in this release.

  New Protocol Support

   There are no new protocols in this release.

  Updated Protocol Support

   6LoWPAN, ADwin, AllJoyn, Art-Net, Asterix, BGP, Bitcoin, Bluetooth
   OBEX, Bluetooth SDP, CFM, CIP, DCERPC PN-IO, DCERPC SPOOLSS, DEC DNA,
   DECT, DHCPv6, DNS, DTN, E-LMI, ENIP, Ethernet, Extreme, FCoIB, Fibre
   Channel, GED125, GTP, H.248, H.264, HiSLIP, IDRP, IEEE 802.11, IEEE
   P1722.1, Infiniband, IrDA, iSCSI, ISUP, LBMR, LCSAP, LPP, MAC LTE,
   MAUSB, MBIM, MIM, MIP, MIPv6, MP2T, MPEG-1, NAS EPS, NAT-PMP, NCP, NXP
   PN532, OpcUa, OpenFlow, PTP, RDM, RPKI-RTR, RSVP, RTnet, RTSP, SCTP,
   SMPP, SMTP, SPDY, Spice, TCP, WCCP, Wi-Fi P2P, and WiMAX

  New and Updated Capture File Support

   and K12
     __________________________________________________________________

Getting Wireshark

   Wireshark source code and installation packages are available from
   [44]http://www.wireshark.org/download.html.

  Vendor-supplied Packages

   Most Linux and Unix vendors supply their own Wireshark packages. You
   can usually install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages can be
   found on the [45]download page on the Wireshark web site.
     __________________________________________________________________

File Locations

   Wireshark and TShark look in several different locations for preference
   files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations
   vary from platform to platform. You can use About->Folders to find the
   default locations on your system.
     __________________________________________________________________

Known Problems

   Dumpcap might not quit if Wireshark or TShark crashes. ([46]Bug 1419)

   The BER dissector might infinitely loop. ([47]Bug 1516)

   Capture filters aren't applied when capturing from named pipes.
   ([48]Bug 1814)

   Filtering tshark captures with read filters (-R) no longer works.
   ([49]Bug 2234)

   The 64-bit Windows installer does not support Kerberos decryption.
   ([50]Win64 development page)

   Resolving ([51]Bug 9044) reopens ([52]Bug 3528) so that Wireshark no
   longer automatically decodes gzip data when following a TCP stream.

   Application crash when changing real-time option. ([53]Bug 4035)

   Hex pane display issue after startup. ([54]Bug 4056)

   Packet list rows are oversized. ([55]Bug 4357)

   Wireshark and TShark will display incorrect delta times in some cases.
   ([56]Bug 4985)
[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )

Offline SiLæncer

  • Cheff-Cubie
  • *****
  • Beiträge: 189183
  • Ohne Input kein Output
    • DVB-Cube
Wireshark 1.99.2 Dev
« Antwort #74 am: 05 Februar, 2015, 12:14 »
Changelog

Qt port:

The welcome screen layout has been updated.
The Preferences dialog no longer crashes on Windows.
The packet list header menu has been added.
Statistics tree plugins are now supported.
The window icon is now displayed properly in the Windows taskbar.
A packet list an byte view selection bug has been fixed
The RTP Streams dialog has been added.
The Protocol Hierarchy Statistics dialog has been added.

[close]

http://www.wireshark.org/

Arbeits.- Testrechner :

Intel® Core™ i7-6700 (4 x 3.40 GHz / 4.00 GHz)
16 GB (2 x 8 GB) DDR4 SDRAM 2133 MHz
250 GB SSD Samsung 750 EVO / 1 TB HDD
ZOTAC Geforce GTX 1080TI AMPExtreme Core Edition 11GB GDDR5
MSI Z170A PC Mate Mainboard
DVD-Brenner Laufwerk
Microsoft Windows 10 Home 64Bit

TT S2 3200 ( BDA Treiber 5.0.1.8 ) + Terratec Cinergy 1200 C ( BDA Treiber 4.8.3.1.8 )