Bug Fixes

• The following vulnerabilities have been fixed.
• wnpa-sec-2012-13
• The DCP ETSI dissector could trigger a zero division. Reported by Laurent Butti. (Bug 7566)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4285
• wnpa-sec-2012-14
• The MongoDB dissector could go into a large loop. Reported by Ben Schmidt. (Bug 7572)
• Versions affected: 1.8.0 to 1.8.1.
• CVE-2012-4287
• wnpa-sec-2012-15
• The XTP dissector could go into an infinite loop. Reported by Ben Schmidt. (Bug 7571)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4288
• wnpa-sec-2012-16
• The ERF dissector could overflow a buffer. Reported by Laurent Butti. (Bug 7563)
• Versions affected: 1.8.0 to 1.8.1.
• CVE-2012-4294 CVE-2012-4295
• wnpa-sec-2012-17
• The AFP dissector could go into a large loop. Reported by Stefan Cornelius. (Bug 7603)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4289
• wnpa-sec-2012-18
• The RTPS2 dissector could overflow a buffer. Reported by Laurent Butti. (Bug 7568)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4296
• wnpa-sec-2012-19
• The GSM RLC MAC dissector could overflow a buffer. Reported by Laurent Butti. (Bug 7561)
• Versions affected: 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4297
• wnpa-sec-2012-20
• The CIP dissector could exhaust system memory. Reported by Ben Schmidt. (Bug 7570)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4291
• wnpa-sec-2012-21
• The STUN dissector could crash. Reported by Laurent Butti. (Bug 7569)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4292
• wnpa-sec-2012-22
• The EtherCAT Mailbox dissector could abort. Reported by Laurent Butti. (Bug 7562)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4293
• wnpa-sec-2012-23
• The CTDB dissector could go into a large loop. Reported by Ben Schmidt. (Bug 7573)
• Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
• CVE-2012-4290
• wnpa-sec-2012-24
• The pcap-ng file parser could trigger a zero division. (Bug 7533)
• Versions affected: 1.8.0 to 1.8.1.
• CVE-2012-4286
• wnpa-sec-2012-25
• The Ixia IxVeriWave file parser could overflow a buffer. (Bug 7533)
• Versions affected: 1.8.0 to 1.8.1.
• CVE-2012-4298
• The following bugs have been fixed:
• Move Y.1711 out of MPLS dissector. (Bug 6787)
• Patch: Add frame.interface_id support for ERF file format. (Bug 7266)
• Freeze when Resizing or Moving while capturing. (Bug 7305)
• Wireshark crashes when using multiple files. (Bug 7423)
• Wireshark crashes on opening very short NFS pcap file. (Bug 7498)
• Analyze->Apply as Filter and Analyze->Prepare a Filter cause crashes. (Bug 7506)
• crashes in interface list, pipe handling. (Bug 7511)
• ISDN LAPD X.31 packet traffic can not be decoded. (Bug 7514)
• GIOP request_id used for sub dissectors is not assigned when decoding GIOP 1.2 Request message. (Bug 7516)
• pcap-ng -ISB always writes 0 for isb_ifrecv option. (Bug 7523)
• GSM classmark3 decode wrong. (Bug 7524)
• mem corruption\heap corruption\div0 bugs. (Bug 7533)
• DNS AD flag not shown properly. (Bug 7555)
• Wireshark and TShark crash at start with invalid color filter on SPARC. (Bug 7634)

New and Updated Features

• There are no new features in this release.

New Protocol Support

• There are no new protocols in this release.

Updated Protocol Support

• AFP, Apache JServ Protocol v1.3, Bluetooth L2CAP, CIP, CTDB, DCP ETSI, ERF, EtherCAT Mailbox, FC Link Control, GIOP, GSM A, GSM RLC MAC, GTP, GTPv2, ISDN, LISP, MongoDB, MPLS ITU-T Y.1711 OAM, MPLS PM, NFS, RTPS2, SCTP, STUN, XTP

New and Updated Capture File Support

• Ixia IxVeriWave, pcap-ng