Wireshark v1.4.12 Released

Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto (and often de jure) standard across many industries and educational institutions.

Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998.

Changelog v1.4.12

The following vulnerabilities have been fixed.

  • wnpa-sec-2012-04The ANSI A dissector could dereference a NULL pointer and crash. (Bug 6823)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • wnpa-sec-2012-06The pcap and pcap-ng file parsers could crash trying to read ERF data. (Bug 6804)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • wnpa-sec-2012-07The MP2T dissector could try to allocate too much memory and crash. (Bug 6833)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • The Windows installers now include GnuTLS 1.12.18, which fixes several vulnerabilities.


The following bugs have been fixed:

  • Some PGM options are not parsed correctly. (Bug 5687)
  • dumpcap crashes when capturing from pipe to a pcap-ng file (e.g., when passing data from CACE Pilot to Wireshark). (Bug 5939)
  • No error for UDP/IPv6 packet with zero checksum. (Bug 6232)
  • packetBB dissector bug: More than 1000000 items in the tree — possible infinite loop. (Bug 6687)
  • Ethernet traces in K12 text format sometimes give bogus “malformed frame” errors and other problems. (Bug 6735)
  • non-IPP packets to or from port 631 are dissected as IPP. (Bug 6765)
  • IAX2 dissector reads past end of packet for unknown IEs. (Bug 6815)
  • Pcap-NG files with SHB options longer than 100 bytes aren’t recognized as pcap-NG files, and options longer than 100 bytes in other blocks aren’t handled either. (Bug 6846)
  • Patch to fix DTLS decryption. (Bug 6847)
  • Expression… dialog is crash. (Bug 6891)
  • ISAKMP : VendorID CheckPoint : Malformed Packet. (Bug 6972)
  • Radiotap dissector lists a bogus “DBM TX Attenuation” bit. (Bug 7000)
  • MySQL dissector assertion. (Ask 8649)

Download Wireshark v1.4.12


www.artssec.com @maxisoler