NEWS 5.81 KB
Newer Older
Gerald Combs's avatar
Gerald Combs committed
1
Wireshark 2.6.3 Release Notes
2

Gerald Combs's avatar
Gerald Combs committed
3
 What is Wireshark?
4

Gerald Combs's avatar
Gerald Combs committed
5 6
  Wireshark is the world’s most popular network protocol analyzer. It is
  used for troubleshooting, analysis, development and education.
7

Gerald Combs's avatar
Gerald Combs committed
8
 What’s New
9

Gerald Combs's avatar
Gerald Combs committed
10 11
  Bug Fixes

Gerald Combs's avatar
Gerald Combs committed
12
   The following vulnerabilities have been fixed:
Gerald Combs's avatar
Gerald Combs committed
13

Gerald Combs's avatar
Gerald Combs committed
14
     • wnpa-sec-2018-44[1]
Gerald Combs's avatar
Gerald Combs committed
15

Gerald Combs's avatar
Gerald Combs committed
16
     • Bluetooth AVDTP dissector crash. Bug 14884[2]. CVE-2018-16058[3].
Gerald Combs's avatar
Gerald Combs committed
17

Gerald Combs's avatar
Gerald Combs committed
18
     • wnpa-sec-2018-45[4]
Gerald Combs's avatar
Gerald Combs committed
19

Gerald Combs's avatar
Gerald Combs committed
20 21
     • Bluetooth Attribute Protocol dissector crash. Bug 14994[5].
       CVE-2018-16056[6].
Gerald Combs's avatar
Gerald Combs committed
22

Gerald Combs's avatar
Gerald Combs committed
23
     • wnpa-sec-2018-46[7]
Gerald Combs's avatar
Gerald Combs committed
24

Gerald Combs's avatar
Gerald Combs committed
25
     • Radiotap dissector crash. Bug 15022[8]. CVE-2018-16057[9].
Gerald Combs's avatar
Gerald Combs committed
26

Gerald Combs's avatar
Gerald Combs committed
27 28
   The following bugs have been fixed:

Gerald Combs's avatar
Gerald Combs committed
29 30
     • Wireshark Hangs on startup initializing external capture plugins.
       Bug 14657[10].
Gerald Combs's avatar
Gerald Combs committed
31

Gerald Combs's avatar
Gerald Combs committed
32 33
     • Qt: SCTP Analyse Association Dialog: Segmentation fault when
       clicking twice the Filter Association button. Bug 14970[11].
Gerald Combs's avatar
Gerald Combs committed
34

Gerald Combs's avatar
Gerald Combs committed
35 36
     • Incorrect presentation of dissected data item (NETMASK) in ISAKMP
       dissector. Bug 14987[12].
Gerald Combs's avatar
Gerald Combs committed
37

Gerald Combs's avatar
Gerald Combs committed
38
     • Decode NFAPI: CONFIG.request Error. Bug 14988[13].
Gerald Combs's avatar
Gerald Combs committed
39

Gerald Combs's avatar
Gerald Combs committed
40
     • udpdump frame too long error. Bug 14989[14].
Gerald Combs's avatar
Gerald Combs committed
41

Gerald Combs's avatar
Gerald Combs committed
42
     • ISDN - LAPD dissector broken since version 2.5.0. Bug 15018[15].
Gerald Combs's avatar
Gerald Combs committed
43

Gerald Combs's avatar
Gerald Combs committed
44 45
     • ASTERIX Category 062 / 135 Altitude has wrong value. Bug
       15030[16].
Gerald Combs's avatar
Gerald Combs committed
46

Gerald Combs's avatar
Gerald Combs committed
47 48
     • Wireshark cannot decrypt SSL/TLS session if it was proxied over
       HTTP tunnel. Bug 15042[17].
Gerald Combs's avatar
Gerald Combs committed
49

Gerald Combs's avatar
Gerald Combs committed
50 51
     • TLS records in a HTTP tunnel are displayed as "Encrypted
       Handshake Message". Bug 15043[18].
Gerald Combs's avatar
Gerald Combs committed
52

Gerald Combs's avatar
Gerald Combs committed
53 54
     • BTATT Dissector: Temperature Measurement: Celsius and Fahrenheit
       swapped. Bug 15058[19].
Gerald Combs's avatar
Gerald Combs committed
55

Gerald Combs's avatar
Gerald Combs committed
56 57
     • Diameter AVP User Location Info, Mobile Network Code decoded not
       correctly. Bug 15068[20].
Gerald Combs's avatar
Gerald Combs committed
58

Gerald Combs's avatar
Gerald Combs committed
59 60
     • Heartbeat message "Info" displayed without comma separator. Bug
       15079[21].
Gerald Combs's avatar
Gerald Combs committed
61 62

  New and Updated Features
Gerald Combs's avatar
Gerald Combs committed
63

Gerald Combs's avatar
Gerald Combs committed
64
   There are no new features in this release.
Gerald Combs's avatar
Gerald Combs committed
65

Gerald Combs's avatar
Gerald Combs committed
66 67
  New Protocol Support

Gerald Combs's avatar
Gerald Combs committed
68
   There are no new protocols in this release.
Joerg Mayer's avatar
Joerg Mayer committed
69

Gerald Combs's avatar
Gerald Combs committed
70 71
  Updated Protocol Support

Gerald Combs's avatar
Gerald Combs committed
72 73 74 75
   ASTERIX, Bluetooth, Bluetooth ATT, Bluetooth AVDTP, DHCP, DTLS,
   E.212, FP, GSM A RR, HTTP, HTTP2, IEEE 802.11, ISAKMP, ISDN, K12,
   NFAPI, Nordic BLE, PFCP, Radiotap, SSL, Steam IHS Discovery, and TLS
   1.3
Gerald Combs's avatar
Gerald Combs committed
76

Gerald Combs's avatar
Gerald Combs committed
77
  New and Updated Capture File Support
78

Gerald Combs's avatar
Gerald Combs committed
79
   pcapng
Gerald Combs's avatar
Gerald Combs committed
80 81 82

  New and Updated Capture Interfaces support

Gerald Combs's avatar
Gerald Combs committed
83
   ciscodump, udpdump
Gerald Combs's avatar
Gerald Combs committed
84

Gerald Combs's avatar
Gerald Combs committed
85
 Getting Wireshark
86

Gerald Combs's avatar
Gerald Combs committed
87
  Wireshark source code and installation packages are available from
Gerald Combs's avatar
Gerald Combs committed
88
  https://www.wireshark.org/download.html[22].
89 90 91

  Vendor-supplied Packages

Gerald Combs's avatar
Gerald Combs committed
92 93 94
   Most Linux and Unix vendors supply their own Wireshark packages. You
   can usually install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages can
Gerald Combs's avatar
Gerald Combs committed
95
   be found on the download page[23] on the Wireshark web site.
96

Gerald Combs's avatar
Gerald Combs committed
97
 File Locations
98

Gerald Combs's avatar
Gerald Combs committed
99
  Wireshark and TShark look in several different locations for
Gerald Combs's avatar
Gerald Combs committed
100 101 102
  preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These
  locations vary from platform to platform. You can use About→Folders to
  find the default locations on your system.
103

Gerald Combs's avatar
Gerald Combs committed
104
 Known Problems
Gerald Combs's avatar
Gerald Combs committed
105

Gerald Combs's avatar
Gerald Combs committed
106
  The BER dissector might infinitely loop. Bug 1516[24].
Gerald Combs's avatar
Gerald Combs committed
107

Gerald Combs's avatar
Gerald Combs committed
108
  Capture filters aren’t applied when capturing from named pipes. Bug
Gerald Combs's avatar
Gerald Combs committed
109
  1814[25].
Gerald Combs's avatar
Gerald Combs committed
110

Gerald Combs's avatar
Gerald Combs committed
111
  Filtering tshark captures with read filters (-R) no longer works. Bug
Gerald Combs's avatar
Gerald Combs committed
112
  2234[26].
Gerald Combs's avatar
Gerald Combs committed
113

Gerald Combs's avatar
Gerald Combs committed
114
  Application crash when changing real-time option. Bug 4035[27].
Gerald Combs's avatar
Gerald Combs committed
115

Gerald Combs's avatar
Gerald Combs committed
116
  Wireshark and TShark will display incorrect delta times in some cases.
Gerald Combs's avatar
Gerald Combs committed
117
  Bug 4985[28].
118

Gerald Combs's avatar
Gerald Combs committed
119
  Wireshark should let you work with multiple capture files. Bug
Gerald Combs's avatar
Gerald Combs committed
120
  10488[29].
Gerald Combs's avatar
Gerald Combs committed
121

Gerald Combs's avatar
Gerald Combs committed
122
 Getting Help
Gerald Combs's avatar
Gerald Combs committed
123

Gerald Combs's avatar
Gerald Combs committed
124
  Community support is available on Wireshark’s Q&A site[30] and on the
Gerald Combs's avatar
Gerald Combs committed
125
  wireshark-users mailing list. Subscription information and archives
Gerald Combs's avatar
Gerald Combs committed
126
  for all of Wireshark’s mailing lists can be found on the web site[31].
Gerald Combs's avatar
Gerald Combs committed
127

Gerald Combs's avatar
Gerald Combs committed
128
  Official Wireshark training and certification are available from
Gerald Combs's avatar
Gerald Combs committed
129
  Wireshark University[32].
Gerald Combs's avatar
Gerald Combs committed
130

Gerald Combs's avatar
Gerald Combs committed
131
 Frequently Asked Questions
Gerald Combs's avatar
Gerald Combs committed
132

Gerald Combs's avatar
Gerald Combs committed
133
  A complete FAQ is available on the Wireshark web site[33].
Gerald Combs's avatar
Gerald Combs committed
134

Gerald Combs's avatar
Gerald Combs committed
135
  Last updated 2018-08-29 15:26:25 UTC
Gerald Combs's avatar
Gerald Combs committed
136

Gerald Combs's avatar
Gerald Combs committed
137
 References
Gerald Combs's avatar
Gerald Combs committed
138

Gerald Combs's avatar
Gerald Combs committed
139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171
   1. https://www.wireshark.org/security/wnpa-sec-2018-44
   2. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14884
   3. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16058
   4. https://www.wireshark.org/security/wnpa-sec-2018-45
   5. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14994
   6. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16056
   7. https://www.wireshark.org/security/wnpa-sec-2018-46
   8. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15022
   9. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16057
  10. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14657
  11. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14970
  12. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14987
  13. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14988
  14. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14989
  15. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15018
  16. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15030
  17. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15042
  18. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15043
  19. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15058
  20. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15068
  21. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15079
  22. https://www.wireshark.org/download.html
  23. https://www.wireshark.org/download.html#thirdparty
  24. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516
  25. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1814
  26. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2234
  27. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4035
  28. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4985
  29. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10488
  30. https://ask.wireshark.org/
  31. https://www.wireshark.org/lists/
  32. http://www.wiresharktraining.com/
  33. https://www.wireshark.org/faq.html