Software Update: Wireshark 1.12.1

Version 1.12.1 of the open source protocol analyzer and packet niffer Wireshark has been released. With this program, various data packets and network protocols on the network can be analyzed. The program can also use previously saved data traffic as input. Wireshark runs on Windows, Linux, and OS X, with separate downloads for 32bit and 64bit versions of the operating systems. In version 1.12, support for Windows XP and the U3 has been dropped, and it has been announced that this will soon also happen for the 32-bit version of OS X. We are also working hard on the transition from GTK+ to Qt, which should be complete in version 2.0. In version 1.12.1, the following improvements have also been made:

The following vulnerabilities have been fixed:

The following bugs have been fixed:

  • Wireshark can crash during remote capture (rpcap) configuration. (Bug 3554, Bug 6922, ws-buglink:7021)
  • 802.11 capture does not decrypt/decode DHCP response. (Bug 8734)
  • Extra quotes around date fields (FT_ABSOLUTE_TIME) when using -E quote=d or s. (Bug 10213)
  • No progress line in “VOIP RTP Player”. (Bug 10307)
  • MIPv6 Service Selection Identifier parse error. (Bug 10323)
  • Probably wrong length check in proto_item_set_end. (Bug 10329)
  • 802.11 BA sequence number decode is broken. (Bug 10334)
  • wmem_alloc_array() “succeeds” (and clobbers memory) when requested to allocate 0xaaaaaaaa items of size 12. (Bug 10343)
  • Different dissection results for same file. (Bug 10348)
  • Mergecap wildcard breaks in version 1.12.0. (Bug 10354)
  • Diameter TCP reassemble. (Bug 10362)
  • TRILL NLPID 0xc0 unknown to Wireshark. (Bug 10382)
  • BTLE advertising header flags (RxAdd/TxAdd) dissected incorrectly. (Bug 10384)
  • Ethernet OAM (CFM) frames including TLVs are wrongly decoded as malformed. (Bug 10385)
  • BGP4: Wireshark skipped some potion of AS_PATH. (Bug 10399)
  • MAC address name resolution is broken. (Bug 10344)
  • Wrong decoding or RPKI RTR End of Data PDU. (Bug 10411)
  • SSL/TLS dissector incorrectly interprets length for status_request_v2 hello extension. (Bug 10416)
  • Misparsed NTP control assignments with empty values. (Bug 10417)
  • 6LoWPAN multicast address decompression problems. (Bug 10426)
  • Netflow v9 flowset not decoded if options template has zero-length scope section. (Bug 10432)
  • GUI Hangs when Selecting Path to GeoIP Files. (Bug 10434)
  • AX.25 dissector prints unprintable characters. (Bug 10439)
  • 6LoWPAN context handling not working. (Bug 10443)
  • SIP: When export to a CSV, Info is changed to differ. (Bug 10453)
  • Typo in packet-netflow.c. (Bug 10458)
  • Incorrect MPEG-TS decoding (OPCR field). (Bug 10446)

Updated Protocol Support

  • 6LoWPAN
  • A21
  • ACR122
  • Art-Net
  • AX.25
  • BGP
  • BTLE
  • DVB-CI
  • Ethernet OAM
  • hip
  • hiSLIP
  • HTTP2
  • IEEE 802.11
  • MIPv6
  • MP2T
  • net flow
  • NTP
  • openSAFETY
  • OSIA
  • RDM
  • RTSP
  • SES
  • SIP
  • TLS
  • Token Ring MAC

New and Updated Capture File Support

  • DOS Sniffer
  • NetScaler

The following downloads are available:
Wireshark 1.12.1 for Windows (32bit)
Wireshark 1.12.1 for Windows (64 bit)
Wireshark 1.12.1 for PortableApps
Wireshark 1.12.1 for OS X 10.5 (32bit)
Wireshark 1.12.1 for OS X 10.6 and above (64bit)
Wireshark 1.12.1 source code for Linux, Solaris and *BSD among others

Version number 1.12.1
Release status Final
Operating systems Windows 7, Linux, BSD, macOS, Solaris, Windows Server 2003, Windows Vista, Windows Server 2008, Windows Server 2012, Windows 8
Website Wireshark Foundation
File sizes

27.71MB – 33.89MB

License type GPL