Software Update: Wireshark 1.12.4
Version 1.12.4 of the open source protocol analyzer and packet niffer Wireshark has been released. With this program, various data packets and network protocols on the network can be analyzed. Also, the program can use previously saved data traffic as input. Wireshark runs on Windows, Linux, and OS X, with separate downloads for 32bit and 64bit versions of the operating systems. In version 1.12, support for Windows XP and the U3 has been dropped, and it has been announced that this will soon also happen for the 32-bit version of OS X. We are also working hard on the transition from GTK+ to Qt, which should be complete in version 2.0. The following improvements have also been made in this release:
The following vulnerabilities have been fixed.
- wnpa-sec-2015-06 The ATN-CPDLC dissector could crash. †Bug 9952† CVE-2015-2187
- wnpa-sec-2015-07 The WCP dissector could crash. †Bug 10844† CVE-2015-2188
- wnpa-sec-2015-08 The pcapng file parser could crash. †Bug 10895† CVE-2015-2189
- wnpa-sec-2015-09 The LLDP dissector could crash. †Bug 10983† CVE-2015-2190
- wnpa-sec-2015-10 The TNEF dissector could go into an infinite loop. †Bug 11023† CVE-2015-2191
- wnpa-sec-2015-11 The SCSI OSD dissector could go into an infinite loop. †Bug 11024† CVE-2015-2192
The following bugs have been fixed:
- RTP player crashes on decode of long call: BadAlloc (insufficient resources for operation). †Bug 2630†
- “Telephony→SCTP→Analysis This Association” crashes Wireshark on manufactured SCTP packet. †Bug 9849†
- IPv6 Mobility Header Link Layer Address is parsed incorrectly. †bug 10006†
- DNS NXT RR is parsed incorrectly. †Bug 10615†
- IPv6 AUTH mobility option parses Mobility SPI and Authentication Data incorrectly. †Bug 10626†
- IPv6 Mobility Header Link-Layer Address Mobility Option is parsed incorrectly. †Bug 10627†
- HTTP chunked response includes data beyond the chunked response. †Bug 10707†
- DHCP Option 125 Suboption: (1) option-len always expects 1 but specification allows for more. †Bug 10784†
- Incorrect decoding of IPv4 Interface/Neighbor Address sub-TLVs in Extended IS Reachability TLV or IS-IS. †Bug 10837†
- Little-endian OS X Bluetooth PacketLogger files aren’t handled. †Bug 10861†
- X.509 certificate serial number incorrectly interpreted as negative number. †Bug 10862†
- Malformed Packet on rsync-version with length 2. (Bug 10863†
- ZigBee epoch time is incorrectly displayed in OTA cluster. †Bug 10872†
- BGP EVPN – Route Type 4 – “Invalid length of IP Address” – “Expert Info” shows a false error. †Bug 10873†
- Bad bytes read for extended rnc id value in GTP dissector. †Bug 10877†
- “ServiceChangeReasonStr” messages are not shown in txt generated by tshark. †Bug 10879†
- Clang ASAN : AddressSanitizer: global buffer overflow ANSI. †Bug 10897†
- MEGACO wrong decoding on media port. †Bug 10898†
- Wrong media format. †Bug 10899†
- BSSGP Status PDU decoding fault (missing Mandatory element (0x04) BVCI for proper packet). †Bug 10903†
- DNS LOC Precision missing units. †Bug 10940†
- Packets on OpenBSD loopback decoded as raw not null. †Bug 10956†
- Display Filter Macro unable to edit. †Bug 10957†
- IPv6 Local Mobility Anchor Address mobility option code is treated incorrectly. †Bug 10961†
- SNTP server list improperly formatted in DHCPv6 packet details. †Bug 10964†
- Juniper Packet Mirror dissector expects ipv6 flow label = 0. (Bug 10976†
- NS Trace (NetScaler Trace) file format is not able to export specified packets. †Bug 10998†
Updated Protocol Support
- ACN
- ANSI IS-637-A
- AppleMIDI
- ATN-CPDLC
- BGP
- BSSGP
- CMIP
- DHCP
- DHCPv6
- DIS
- DLM3
- DMP
- DNS
- Extreme Networks
- forCES
- FTAM
- GMHDR
- GSM A BSSMAP
- GSM A-bis OML
- GSM MAP
- GSM RLC MAC
- GTP
- H.248
- H.264
- HTTP
- IEEE 802.11
- IPv6
- IS-IS
- ISMACryp
- J1939
- Juniper Jmirror
- KDP
- L2CAP
- LDAP
- LLDP
- MGCP
- MIP6
- NBNS
- NET/ROM
- net flow
- Novell PKI
- PAN
- PPPoE
- RSL
- RSYNC
- RTMPT
- RTP
- SCSI OSD
- SDP
- SMB Pipe
- SMPP
- SYNCROPHASOR
- TETRA
- TiVoConnect
- TNEF
- USB HID
- V.52
- VSS Monitoring
- X.509AF
- Zebra
- and ZigBee
New and Updated Capture File Support
- NetScaler
- PacketLogger
- and Pcapng
The following downloads are available:
Wireshark 1.12.4 for Windows (32bit)
Wireshark 1.12.4 for Windows (64 bit)
Wireshark 1.12.4 for PortableApps
Wireshark 1.12.4 for OS X 10.5 (32bit)
Wireshark 1.12.4 for OS X 10.6 and above (64bit)
Wireshark 1.12.4 source code for Linux, Solaris and *BSD among others
| Version number | 1.12.4 |
| Release status | Final |
| Operating systems | Windows 7, Linux, macOS, Windows Server 2003, Windows Vista, Windows Server 2008, Windows Server 2012, Windows 8, Windows 10 |
| Website | Wireshark Foundation |
| Download | |
| File size |
25.50MB |
| License type | GPL |