./net/wireshark, Network protocol analyzer

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 1.12.9, Package name: wireshark-1.12.9, Maintainer: pkgsrc-users

Wireshark is a network traffic analyzer, or "sniffer", for Unix and
Unix-like operating systems. It uses GTK+, a graphical user interface
library, and libpcap, a packet capture and filtering library.

The Wireshark distribution also comes with TShark, which is a
line-oriented sniffer (similar to Sun's snoop, or tcpdump) that uses the
same dissection, capture-file reading and writing, and packet filtering
code as Wireshark, and with editcap, which is a program to read capture
files and write the packets from that capture file, possibly in a
different capture file format, and with some packets possibly removed
from the capture.

Required to run:
[sysutils/desktop-file-utils] [graphics/hicolor-icon-theme] [security/gnutls] [security/libgcrypt] [devel/glib2] [devel/libsmi] [devel/pcre] [x11/gtk3] [lang/lua52]

Required to build:
[pkgtools/x11-links] [x11/compositeproto] [x11/glproto] [x11/renderproto] [x11/xproto] [x11/xf86vidmodeproto] [x11/xf86driproto] [x11/damageproto] [x11/inputproto] [x11/xextproto] [x11/randrproto] [x11/dri2proto] [x11/xcb-proto] [x11/fixesproto4] [lang/python27]

Package options: gtk3, lua

Master sites:

SHA1: 5a62c3a355289396af946e80aab741ae6ad7eacb
RMD160: e2a5cec42205e378f6c7062f2fd00a506be54dfb
Filesize: 28589.294 KB

Version history: (Expand)

CVS history: (Expand)

   2016-01-02 12:39:56 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
Update to 1.12.9

                         Wireshark 1.12.9 Release Notes

What is Wireshark?

   Wireshark is the world's most popular network protocol analyzer. It is
   used for troubleshooting, analysis, development and education.

What's New

  Bug Fixes

   The following vulnerabilities have been fixed:
     * [1]wnpa-sec-2015-31
       NBAP dissector crashes. ([2]Bug 11602, [3]Bug 11835, [4]Bug 11841)
     * [5]wnpa-sec-2015-32
       UMTS FP dissector crashes. ([6]Bug 11602, [7]Bug 11606)
     * [8]wnpa-sec-2015-33
       DCOM dissector crash. ([9]Bug 11610)
     * [10]wnpa-sec-2015-34
       AllJoyn dissector infinite loop. ([11]Bug 11607)
     * [12]wnpa-sec-2015-35
       T.38 dissector crash. ([13]Bug 9887)
     * [14]wnpa-sec-2015-36
       SDP dissector crash. ([15]Bug 9887)
     * [16]wnpa-sec-2015-37
       NLM dissector crash.
     * [17]wnpa-sec-2015-38
       DNS dissector crash. ([18]Bug 10988)
     * [19]wnpa-sec-2015-39
       BER dissector crash.
     * [20]wnpa-sec-2015-40
       Zlib decompression crash. ([21]Bug 11548)
     * [22]wnpa-sec-2015-41
       SCTP dissector crash. ([23]Bug 11767)
     * [24]wnpa-sec-2015-42
       802.11 decryption crash. ([25]Bug 11790, [26]Bug 11826)
     * [27]wnpa-sec-2015-43
       DIAMETER dissector crash. ([28]Bug 11792)
     * [29]wnpa-sec-2015-44
       VeriWave file parser crashes. ([30]Bug 11789, [31]Bug 11791)
     * [32]wnpa-sec-2015-45
       RSVP dissector crash. ([33]Bug 11793)
     * [34]wnpa-sec-2015-46
       ANSI A & GSM A dissector crashes. ([35]Bug 11797)
     * [36]wnpa-sec-2015-47
       Ascend file parser crash. ([37]Bug 11794)
     * [38]wnpa-sec-2015-48
       NBAP dissector crash. ([39]Bug 11815)
     * [40]wnpa-sec-2015-49
       RSL dissector crash. ([41]Bug 11829)
     * [42]wnpa-sec-2015-50
       ZigBee ZCL dissector crash. ([43]Bug 11830)
     * [44]wnpa-sec-2015-51
       Sniffer file parser crash. ([45]Bug 11827)

   The Windows installers are now built using NSIS 2.50 in order to avoid
   [46]DLL hijacking flaws.

   The following bugs have been fixed:
     * Zooming out (Ctrl+-) too far crashes Wireshark. ([47]Bug 8854)
     * IPv6 Next Header is Unknown yet Wireshark tries parsing an IPv6
       Extension Header. ([48]Bug 9996)
     * IPv6 Mobility Header Link-Layer Address Mobility Option is parsed
       incorrectly. ([49]Bug 10627)
     * Windows Wireshark Installer does not detect WinPcap which is
       already installed. ([50]Bug 10867)
     * SSL Decrypted Packet Not Decoded As HTTP. ([51]Bug 10984)
     * Wireshark crashes when using the VoIP player. ([52]Bug 11596)
     * [GSMTAP] Incorrect decoding of MS Radio Access Capability using
       alternative coding. ([53]Bug 11599)
     * TCP sequence analysis (expert info) does not work in 802.1ah
       frames. ([54]Bug 11629)
     * No correct GVCP info message for READREG_ACK command. ([55]Bug
     * Bug in EtherCAT dissector with mailbox response. ([56]Bug 11652)
     * NLM v4 statistics crash. ([57]Bug 11654)
     * Malformed packet with IPv6 mobility header. ([58]Bug 11728)
     * LDAP decode shows invalid number of results for searchResEntry
       packets. ([59]Bug 11761)
     * IPv6 RPL Routing Header with length of 8 bytes still reads an
       address. ([60]Bug 11803)
     * g_utf8_validate assertion when reassembling GSM SMS messages
       encoded in UCS2. ([61]Bug 11809)
     * MPEG2TS NULL pkt: AFC: "Should be 0 for NULL packets" wrong.
       ([62]Bug 11921)

  New and Updated Features

   There are no new features in this release.

  New Protocol Support

   There are no new protocols in this release.

  Updated Protocol Support

   6LoWPAN, 802.1ah, AllJoyn, ANSI A, ASN.1 BER, CLNP, CMS, DCOM,

  New and Updated Capture File Support

   Ascend, ERF, Sniffer, and VeriWave

Getting Wireshark

   Wireshark source code and installation packages are available from

  Vendor-supplied Packages

   Most Linux and Unix vendors supply their own Wireshark packages. You
   can usually install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages can be
   found on the [64]download page on the Wireshark web site.

File Locations

   Wireshark and TShark look in several different locations for preference
   files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations
   vary from platform to platform. You can use About->Folders to find the
   default locations on your system.

Known Problems

   Dumpcap might not quit if Wireshark or TShark crashes. ([65]Bug 1419)

   The BER dissector might infinitely loop. ([66]Bug 1516)

   Capture filters aren't applied when capturing from named pipes.
   ([67]Bug 1814)

   Filtering tshark captures with read filters (-R) no longer works.
   ([68]Bug 2234)

   The 64-bit Windows installer does not support Kerberos decryption.
   ([69]Win64 development page)

   Resolving ([70]Bug 9044) reopens ([71]Bug 3528) so that Wireshark no
   longer automatically decodes gzip data when following a TCP stream.

   Application crash when changing real-time option. ([72]Bug 4035)

   Hex pane display issue after startup. ([73]Bug 4056)

   Packet list rows are oversized. ([74]Bug 4357)

   Wireshark and TShark will display incorrect delta times in some cases.
   ([75]Bug 4985)

Getting Help

   Community support is available on [76]Wireshark's Q&A site and on the
   wireshark-users mailing list. Subscription information and archives for
   all of Wireshark's mailing lists can be found on [77]the web site.

   Official Wireshark training and certification are available from
   [78]Wireshark University.

Frequently Asked Questions

   A complete FAQ is available on the [79]Wireshark web site.

   Last updated 2015-12-29 08:48:09 PST


   1. https://www.wireshark.org/security/wnpa … 15-31.html
   2. https://bugs.wireshark.org/bugzilla/sho … i?id=11602
   3. https://bugs.wireshark.org/bugzilla/sho … i?id=11835
   4. https://bugs.wireshark.org/bugzilla/sho … i?id=11841
   5. https://www.wireshark.org/security/wnpa … 15-32.html
   6. https://bugs.wireshark.org/bugzilla/sho … i?id=11602
   7. https://bugs.wireshark.org/bugzilla/sho … i?id=11606
   8. https://www.wireshark.org/security/wnpa … 15-33.html
   9. https://bugs.wireshark.org/bugzilla/sho … i?id=11610
  10. https://www.wireshark.org/security/wnpa … 15-34.html
  11. https://bugs.wireshark.org/bugzilla/sho … i?id=11607
  12. https://www.wireshark.org/security/wnpa … 15-35.html
  13. https://bugs.wireshark.org/bugzilla/sho … gi?id=9887
  14. https://www.wireshark.org/security/wnpa … 15-36.html
  15. https://bugs.wireshark.org/bugzilla/sho … gi?id=9887
  16. https://www.wireshark.org/security/wnpa … 15-37.html
  17. https://www.wireshark.org/security/wnpa … 15-38.html
  18. https://bugs.wireshark.org/bugzilla/sho … i?id=10988
  19. https://www.wireshark.org/security/wnpa … 15-39.html
  20. https://www.wireshark.org/security/wnpa … 15-40.html
  21. https://bugs.wireshark.org/bugzilla/sho … i?id=11548
  22. https://www.wireshark.org/security/wnpa … 15-41.html
  23. https://bugs.wireshark.org/bugzilla/sho … i?id=11767
  24. https://www.wireshark.org/security/wnpa … 15-42.html
  25. https://bugs.wireshark.org/bugzilla/sho … i?id=11790
  26. https://bugs.wireshark.org/bugzilla/sho … i?id=11826
  27. https://www.wireshark.org/security/wnpa … 15-43.html
  28. https://bugs.wireshark.org/bugzilla/sho … i?id=11792
  29. https://www.wireshark.org/security/wnpa … 15-44.html
  30. https://bugs.wireshark.org/bugzilla/sho … i?id=11789
  31. https://bugs.wireshark.org/bugzilla/sho … i?id=11791
  32. https://www.wireshark.org/security/wnpa … 15-45.html
  33. https://bugs.wireshark.org/bugzilla/sho … i?id=11793
  34. https://www.wireshark.org/security/wnpa … 15-46.html
  35. https://bugs.wireshark.org/bugzilla/sho … i?id=11797
  36. https://www.wireshark.org/security/wnpa … 15-47.html
  37. https://bugs.wireshark.org/bugzilla/sho … i?id=11794
  38. https://www.wireshark.org/security/wnpa … 15-48.html
  39. https://bugs.wireshark.org/bugzilla/sho … i?id=11815
  40. https://www.wireshark.org/security/wnpa … 15-49.html
  41. https://bugs.wireshark.org/bugzilla/sho … i?id=11829
  42. https://www.wireshark.org/security/wnpa … 15-50.html
  43. https://bugs.wireshark.org/bugzilla/sho … i?id=11830
  44. https://www.wireshark.org/security/wnpa … 15-51.html
  45. https://bugs.wireshark.org/bugzilla/sho … i?id=11827
  46. http://nsis.sourceforge.net/Docs/AppendixF.html
  47. https://bugs.wireshark.org/bugzilla/sho … gi?id=8854
  48. https://bugs.wireshark.org/bugzilla/sho … gi?id=9996
  49. https://bugs.wireshark.org/bugzilla/sho … i?id=10627
  50. https://bugs.wireshark.org/bugzilla/sho … i?id=10867
  51. https://bugs.wireshark.org/bugzilla/sho … i?id=10984
  52. https://bugs.wireshark.org/bugzilla/sho … i?id=11596
  53. https://bugs.wireshark.org/bugzilla/sho … i?id=11599
  54. https://bugs.wireshark.org/bugzilla/sho … i?id=11629
  55. https://bugs.wireshark.org/bugzilla/sho … i?id=11639
  56. https://bugs.wireshark.org/bugzilla/sho … i?id=11652
  57. https://bugs.wireshark.org/bugzilla/sho … i?id=11654
  58. https://bugs.wireshark.org/bugzilla/sho … i?id=11728
  59. https://bugs.wireshark.org/bugzilla/sho … i?id=11761
  60. https://bugs.wireshark.org/bugzilla/sho … i?id=11803
  61. https://bugs.wireshark.org/bugzilla/sho … i?id=11809
  62. https://bugs.wireshark.org/bugzilla/sho … i?id=11921
  63. https://www.wireshark.org/download.html
  64. https://www.wireshark.org/download.html#thirdparty
  65. https://bugs.wireshark.org/bugzilla/sho … gi?id=1419
  66. https://bugs.wireshark.org/bugzilla/sho … gi?id=1516
  67. https://bugs.wireshark.org/bugzilla/sho … gi?id=1814
  68. https://bugs.wireshark.org/bugzilla/sho … gi?id=2234
  69. https://wiki.wireshark.org/Development/Win64
  70. https://bugs.wireshark.org/bugzilla/sho … gi?id=9044
  71. https://bugs.wireshark.org/bugzilla/sho … gi?id=3528
  72. https://bugs.wireshark.org/bugzilla/sho … gi?id=4035
  73. https://bugs.wireshark.org/bugzilla/sho … gi?id=4056
  74. https://bugs.wireshark.org/bugzilla/sho … gi?id=4357
  75. https://bugs.wireshark.org/bugzilla/sho … gi?id=4985
  76. https://ask.wireshark.org/
  77. https://www.wireshark.org/lists/
  78. http://www.wiresharktraining.com/
  79. https://www.wireshark.org/faq.html
   2015-12-05 22:26:09 by Adam Ciarcinski | Files touched by this commit (578)
Log message:
   2015-11-06 18:35:26 by Adam Ciarcinski | Files touched by this commit (5)
Log message:
Added qt5 as an option.
Avoid SDK build on OS X.
   2015-10-21 11:12:10 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
Update wireshark to 1.12.8, fix two pkglint warnings while here.

What's New

  Bug Fixes

   The following vulnerabilities have been fixed.
     * [1]wnpa-sec-2015-30
       Pcapng file parser crash. Discovered by Dario Lombardo and Shannon
       Sabens. ([2]Bug 11455) [3]CVE-2015-7830

   The following bugs have been fixed:
     * Last Address field for IPv6 RPL routing header is interpreted
       incorrectly. ([4]Bug 10560)
     * Comparing two capture files crashes Wireshark when navigating the
       results. ([5]Bug 11098)
     * 802.11 frame is not correctly dissected if it contains HT Control.
       ([6]Bug 11351)
     * GVCP bit-fields not updated. ([7]Bug 11442)
     * Tshark crash when specifying ssl.keys_list on CLI. ([8]Bug 11443)
     * pcapng: SPB capture length is incorrectly truncated if IDB snaplen
       = 0. ([9]Bug 11483)
     * pcapng: NRB IPv4 address is endian swapped but shouldn't be.
       ([10]Bug 11484)
     * pcapng: NRB with options causes file read failure. ([11]Bug 11485)
     * pcapng: ISB without if_drop option is shown as max value. ([12]Bug
     * UNISTIM dissector - Message length not included in offset for
       "Select Adjustable Rx Volume". ([13]Bug 11497)

  Updated Protocol Support

   2015-10-11 16:20:57 by Tobias Nygren | Files touched by this commit (1)
Log message:
Fix startup segfault on 64-bit platforms due to pointer to int conversion.
Why this didn't surface before is anyone's guess. Bump rev.
   2015-09-12 21:03:59 by Tobias Nygren | Files touched by this commit (7) | Package updated
Log message:
Update to wireshark-1.12.7.
Full ChangeLog since 1.10.14 is too long to include. A few highlights:

- Expert information is now filterable when the new API is in use.
- "malformed" display filter has been renamed to "_ws.malformed".
- Transport name resolution is now disabled by default.
- Support has been added for all versions of the DCBx protocol.
- Cleanup of LLDP code, all dissected fields are now navigable.
- Dissector output may be encoded as UTF-8. This includes TShark output.
- The ASN1 plugin has been removed as it s deemed obsolete.
- The GNM dissector has been removed as it was never used.
- The Kerberos dissector has been replaced by one generated from ASN1 code.
- A more flexible, modular memory manager (wmem) has been added.
- A new API for expert information has been added, replacing the old one.
- The tvbuff API has been cleaned up.
- Support for 80+ new protocols
   2015-08-23 16:30:43 by Thomas Klausner | Files touched by this commit (125) | Package updated
Log message:
Bump PKGREVISION for nettle shlib major bump.
   2015-07-10 10:13:42 by David Sainty | Files touched by this commit (2)
Log message:
Fix shell syntax to work with pdksh.

This is already fixed in upstream's repository.