Wireshark-dev: [Wireshark-dev] Wireshark 2.2.11 is now available

From: Gerald Combs <gerald@xxxxxxxxxxxxx>
Date: Thu, 30 Nov 2017 13:56:28 -0800
I'm proud to announce the release of Wireshark 2.2.11.

     __________________________________________________________________

What is Wireshark?

   Wireshark is the world's most popular network protocol analyzer. It is
   used for troubleshooting, analysis, development and education.
     __________________________________________________________________

What's New

  Bug Fixes

   The following vulnerabilities have been fixed:
     * [1]wnpa-sec-2017-47
       The IWARP_MPA dissector could crash. ([2]Bug 14236)
     * [3]wnpa-sec-2017-48
       The NetBIOS dissector could crash. ([4]Bug 14249)
     * [5]wnpa-sec-2017-49
       The CIP Safety dissector could crash. ([6]Bug 14250)

   The following bugs have been fixed:
     * "tshark -G ?" doesn't provide expected help. ([7]Bug 13984)
     * packet-knxnetip.c:936: bad bitmask ?. ([8]Bug 14115)
     * packet-q931.c:1306: bad compare ?. ([9]Bug 14116)
     * Wireshark crashes when exporting various files to .csv, txt and
       other `non-capture file' formats. ([10]Bug 14128)
     * Wireshark prefers packet.dll in System32\Npcap over the one in
       System32. ([11]Bug 14134)
     * PEEKREMOTE dissector does not decode 11ac MCS rates properly.
       ([12]Bug 14136)
     * Wireshark Crash when trying to use Preferences | Advanced. ([13]Bug
       14157)
     * Right click on SMB2 Message ID and then Apply as Column causes
       Runtime Error!. ([14]Bug 14169)
     * Wireshark crashes if "rip.display_routing_domain" is set to TRUE in
       preferences file. ([15]Bug 14197)
     * Entry point inflatePrime not found for androiddump.exe and
       randpktdump.exe. ([16]Bug 14207)
     * Frame direction isn't always set if it comes from the pcapng record
       header rather than the packet pseudo-header. ([17]Bug 14245)

  New and Updated Features

   There are no new features in this release.

  New File Format Decoding Support

   There are no new file formats in this release.

  New Protocol Support

   There are no new protocols in this release.

  Updated Protocol Support

   3GPP NAS, CIP Safety, IWARP_MPA, KNXnet/IP, NetBIOS, PEEKREMOTE, Q.931,
   and RIP

  New and Updated Capture File Support

   There is no new or updated capture file support in this release.

  New and Updated Capture Interfaces support

   There are no new or updated capture interfaces supported in this
   release.

  Major API Changes

   There are no major API changes in this release.
     __________________________________________________________________

Getting Wireshark

   Wireshark source code and installation packages are available from
   [18]https://www.wireshark.org/download.html.

  Vendor-supplied Packages

   Most Linux and Unix vendors supply their own Wireshark packages. You
   can usually install or upgrade Wireshark using the package management
   system specific to that platform. A list of third-party packages can be
   found on the [19]download page on the Wireshark web site.
     __________________________________________________________________

File Locations

   Wireshark and TShark look in several different locations for preference
   files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations
   vary from platform to platform. You can use About->Folders to find the
   default locations on your system.
     __________________________________________________________________

Known Problems

   Dumpcap might not quit if Wireshark or TShark crashes. ([20]Bug 1419)

   The BER dissector might infinitely loop. ([21]Bug 1516)

   Capture filters aren't applied when capturing from named pipes.
   ([22]Bug 1814)

   Filtering tshark captures with read filters (-R) no longer works.
   ([23]Bug 2234)

   Application crash when changing real-time option. ([24]Bug 4035)

   Wireshark and TShark will display incorrect delta times in some cases.
   ([25]Bug 4985)

   Wireshark should let you work with multiple capture files. ([26]Bug
   10488)

   Dell Backup and Recovery (DBAR) makes many Windows applications crash,
   including Wireshark. ([27]Bug 12036)
     __________________________________________________________________

Getting Help

   Community support is available on [28]Wireshark's Q&A site and on the
   wireshark-users mailing list. Subscription information and archives for
   all of Wireshark's mailing lists can be found on [29]the web site.

   Official Wireshark training and certification are available from
   [30]Wireshark University.
     __________________________________________________________________

Frequently Asked Questions

   A complete FAQ is available on the [31]Wireshark web site.
     __________________________________________________________________

   Last updated 2017-11-30 19:29:19 UTC

References

   1. https://www.wireshark.org/security/wnpa-sec-2017-47.html
   2. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14236
   3. https://www.wireshark.org/security/wnpa-sec-2017-48.html
   4. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14249
   5. https://www.wireshark.org/security/wnpa-sec-2017-49.html
   6. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14250
   7. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13984
   8. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14115
   9. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14116
  10. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14128
  11. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14134
  12. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14136
  13. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14157
  14. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14169
  15. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14197
  16. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14207
  17. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14245
  18. https://www.wireshark.org/download.html
  19. https://www.wireshark.org/download.html#thirdparty
  20. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1419
  21. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516
  22. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1814
  23. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2234
  24. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4035
  25. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4985
  26. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10488
  27. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12036
  28. https://ask.wireshark.org/
  29. https://www.wireshark.org/lists/
  30. http://www.wiresharktraining.com/
  31. https://www.wireshark.org/faq.html


Digests

wireshark-2.2.11.tar.bz2: 32379934 bytes
SHA256(wireshark-2.2.11.tar.bz2)=f8a5a13ce27dfab0c64a49273c6c8d0550c57b066fa4c2c6909119bb2a07a702
RIPEMD160(wireshark-2.2.11.tar.bz2)=3575d108ef626fcfc8121d779d70f3f235843f4e
SHA1(wireshark-2.2.11.tar.bz2)=a24f0badbe3bab28e3c2553e15f82af3470ccff5

Wireshark-win32-2.2.11.exe: 44651304 bytes
SHA256(Wireshark-win32-2.2.11.exe)=ee3da6f110b31ed2ec4a4a0aea90cd4c9bea95fa1c674e98c75c98a0bdfbdfe2
RIPEMD160(Wireshark-win32-2.2.11.exe)=2f10a82c05408ae7b66e49276bb58120e98fc513
SHA1(Wireshark-win32-2.2.11.exe)=f33e585f7def34b50aa55de6886c3b872e17ea0d

Wireshark-win64-2.2.11.exe: 56153456 bytes
SHA256(Wireshark-win64-2.2.11.exe)=063cc3370df4a2c84f122d8933dd39bb711af1075dd8c2a4ab2457e83a92997f
RIPEMD160(Wireshark-win64-2.2.11.exe)=c2432253736230ad8104dd546949e662297f64a5
SHA1(Wireshark-win64-2.2.11.exe)=89e01c194da4d9783951db3cd3d3fef2401881f0

WiresharkPortable_2.2.11.paf.exe: 46262768 bytes
SHA256(WiresharkPortable_2.2.11.paf.exe)=dc20c41ab1f5a1e432a9b11f1dcefc7d9c161ac507aab95cb8391cc8194e77d2
RIPEMD160(WiresharkPortable_2.2.11.paf.exe)=ff45f9a1c30a5632d8544f96120881ea5d286f94
SHA1(WiresharkPortable_2.2.11.paf.exe)=2235b4a9db4e02a9ecc411aef4ce3edf973a789d

Wireshark 2.2.11 Intel 64.dmg: 33510131 bytes
SHA256(Wireshark 2.2.11 Intel
64.dmg)=36c97cf2c765184220545948dad5a72b06a8dabc93d54cef6c5cfdb62e49cac1
RIPEMD160(Wireshark 2.2.11 Intel
64.dmg)=5245fa8d411b631467d1064a35605a13b28172ea
SHA1(Wireshark 2.2.11 Intel 64.dmg)=9615346813b27a88d02a76bbd57341d7e37aeb2e

You can validate these hashes using the following commands (among others):

    Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256
    Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz
    macOS: shasum -a 256 "Wireshark x.y.z Intel 64.dmg"
    Other: openssl sha256 wireshark-x.y.z.tar.xz

Attachment: signature.asc
Description: OpenPGP digital signature