Wireshark v1.4.12 Released

Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto (and often de jure) standard across many industries and educational institutions.

Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998.

Changelog v1.4.12

The following vulnerabilities have been fixed.

  • wnpa-sec-2012-04The ANSI A dissector could dereference a NULL pointer and crash. (Bug 6823)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • wnpa-sec-2012-06The pcap and pcap-ng file parsers could crash trying to read ERF data. (Bug 6804)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • wnpa-sec-2012-07The MP2T dissector could try to allocate too much memory and crash. (Bug 6833)

    Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.

  • The Windows installers now include GnuTLS 1.12.18, which fixes several vulnerabilities.

 

The following bugs have been fixed:

  • Some PGM options are not parsed correctly. (Bug 5687)
  • dumpcap crashes when capturing from pipe to a pcap-ng file (e.g., when passing data from CACE Pilot to Wireshark). (Bug 5939)
  • No error for UDP/IPv6 packet with zero checksum. (Bug 6232)
  • packetBB dissector bug: More than 1000000 items in the tree — possible infinite loop. (Bug 6687)
  • Ethernet traces in K12 text format sometimes give bogus “malformed frame” errors and other problems. (Bug 6735)
  • non-IPP packets to or from port 631 are dissected as IPP. (Bug 6765)
  • IAX2 dissector reads past end of packet for unknown IEs. (Bug 6815)
  • Pcap-NG files with SHB options longer than 100 bytes aren’t recognized as pcap-NG files, and options longer than 100 bytes in other blocks aren’t handled either. (Bug 6846)
  • Patch to fix DTLS decryption. (Bug 6847)
  • Expression… dialog is crash. (Bug 6891)
  • ISAKMP : VendorID CheckPoint : Malformed Packet. (Bug 6972)
  • Radiotap dissector lists a bogus “DBM TX Attenuation” bit. (Bug 7000)
  • MySQL dissector assertion. (Ask 8649)

Download Wireshark v1.4.12

MaxiSoler

www.artssec.com @maxisoler
Black Hat Arsenal 2024 Next Stop Singapore !

Black Hat Arsenal 2024 Next Stop Singapore !

ToolsWatch Armory at GISEC 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

ToolsWatch Armory at GISEC 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Exploited Vulnerabilities in 2020

Top 10 Most Exploited Vulnerabilities in 2020