aboutsummaryrefslogtreecommitdiffstats
path: root/NEWS
blob: edbec8bd77039cc713a1bcf9ce6fb8c962d79782 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
$Id$

== August 23, 2006

Wireshark 0.99.3 has been released.

   ------------------------------------------------------------------

What is Wireshark?

   Wireshark is the world's most popular network protocol analyzer.
   It is used for troubleshooting, analysis, development, and
   education.

What's New

  Bug Fixes

   The following vulnerabilities have been fixed:

     o The SCSI dissector could crash. Versions affected: 0.99.2.

     o If Wireshark was compiled with ESP decryption support, the
       IPsec ESP preference parser was susceptible to off-by-one
       errors. Versions affected: 0.99.2.

     o The DHCP dissector (and possibly others) in the Windows
       version of Wireshark could trigger a bug in Glib and crash.
       Versions affected: 0.10.13 - 0.99.2.

     o If the SSCOP dissector has a port range configured and the
       SSCOP payload protocol is Q.2931, a malformed packet could
       make the Q.2931 dissector use up available memory. No port
       range is configured by default. Versions affected: 0.7.9 -
       0.99.2.

   The following bugs have been fixed:

     o The VOIP call analysis feature could cause an assertion.

     o The RTP analysis feature could freeze for an extended period.

     o Selecting "Apply as Filter" wouldn't work for some tree items.

  New and Updated Features

   The following features are new (or have been significantly
   updated) since the last release:

     o ESP, Kerberos, and SSL decryption are now supported in the
       Windows installer. (As as result, Wireshark is now subject to
       United States export controls.)

     o The packet list context menu now includes a conversation
       filter.

     o Wireshark can now generate ACL rules for several popular
       firewall products.

     o Wireshark now supports AirPcap, including raw 802.11 captures
       under Windows.

  New Protocol Support

   Daytime, JPEG (RTP payload), Pegasus Lightweight Stream Control,
   Pro-MPEG FEC, UMTS RRC, Veritas Low Latency Transport

  Updated Protocol Support

   All ASN.1 dissectors, 3G A11, 802.11, AIM SST, AJP13, ANSI 637,
   AVS WLAN, BACapp, BFD, CDP, Cisco WIDS, DCERPC (DCERPC, CONV, DFS,
   EPM, FLDB, NETLOGON, NT, PN-IO, RS_PGO), DCOM, DHCP, DIAMETER,
   DTLS, EAPOL, ESP, H.225, H.245, H.450, HTTP, IPv6, ISAKMP,
   Juniper, Kerberos, L2TP, LDAP, MSRP, NTLMSSP, PN-CBA, PN-RT,
   Prism, RSVP, RTCP, RUDP, SCSI, SCTP, SDP, SIP, SIPFRAG, Skinny,
   SMB, SSL, TCP, text/media, Time, XML

  New and Updated Capture File Support

   Catapult DCT2000, nettl

Getting Wireshark

   Wireshark source code and installation packages are available from
   the [1]download page on the main web site.

  Vendor-supplied Packages

   Most Linux and Unix vendors supply their own Wireshark packages.
   You can install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages
   can be found on the [2]download page on the Wireshark web site.

File Locations

   Wireshark and TShark look in several different locations for
   preference files, plugins, SNMP MIBS, and RADIUS dictionaries.
   These locations vary from platform to platform. You can use
   About->Folders to find the default locations on your system.

Known Problems

   On Windows systems the packet list scroll bar can sometimes
   disappear or become unusable. Until the problem is fixed you can
   work around it by resizing the packet list or the main window.
   ([3]Bug #220)

   The Filter button is nonfunctional in the file dialogs under
   Windows.

   Trying to save flow data may crash Wireshark. ([4]Bug #396)

   It may not be possible to re-order coloring rules under Windows.
   ([5]Bug #699)

   Multiple tap interfaces may cause a crash under FreeBSD. ([6]Bug
   #757)

   Wireshark may crash while viewing TCP streams. ([7]Bug #852)

Getting Help

   Community support is available on the wireshark-users mailing
   list. Subscription information and archives for all of Wireshark's
   mailing lists can be found on [8]the web site.

   Commercial support, training, and development services are
   available from [9]CACE Technologies.

Frequently Asked Questions

   A complete FAQ is available on the [10]Wireshark web site.

References

   Visible links
   1. http://www.wireshark.org/download.html
   2. http://www.wireshark.org/download.html#otherplat
   3. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=220
   4. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=396
   5. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=699
   6. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=757
   7. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=852
   8. http://www.wireshark.org/lists/
   9. http://www.cacetech.com/
  10. http://www.wireshark.org/faq.html