Past 1.4 Releases

For upcoming releases, see Development/Roadmap.

1.4.15

Released: August 15, 2012 Release Notes

Done:

• Move over the following revisions:

  • Rev 44111, Rev 44112, Rev 44113, Rev 44117 - Bug 7498 - Crash in NFS dissector when "file_name_snooping" & "file_full_name_snooping" preferences enabled.

  • Rev 43149 - Bug 7562 - Fix EtherCAT Mailbox crash.

  • Rev 44247 - Bug 7566 - Fix dcp-etsi divide-by-zero error.

  • Rev 44289 - Bug 7571 - Fix XTP crash.

  • Rev 44312 - bug 7570 - Check CIP MSP packets for number of services overruns.

  • Rev 44317 - Bug 7603 - Large loop in the AFP dissector.

  • Rev 44320 - Bug 7568 - Fix RTPS2 crash.

  • Rev 44366 - Bug 7569 - Fix STUN crash.

  • Rev 44403 - Bug 7573 - Large loop in the CTDB dissector.

  • Rev 44476 - Fix memcpy in Bluetooth L2CAP.

  • Rev 44491 - Fix subtle g_strdup_printf() memory leaks.

  • Rev 44500 - Update SCTP PPID table.

1.4.14

Released: July 24, 2012 Release Notes

Done:

• Move over the following revisions:

  • Rev 43501 - Bug 7021 - Don't fill in an error message unless pcap_open() actually fails

  • Rev 43139 - Bug 7340 - Netscreen - can't parse packet-header when interface name contain hyphen

  • Rev 43172, Rev 43173 - Don't use Windows FormatMessage() unsafely

  • Rev 43174 - Bug 5241 - Cannot run tshark under tcp using decode-as format for syslog

  • Rev 43179 - Do not use BASE_NONE for FT_*INT* types.

  • Rev 43187 - Ask 11798 - Fix UDP-Lite checksum verification.

  • Rev 43191 - Remove a duplicate entry from the AUTHORS list

  • Rev 43212 - Bug 6917 - Use ".", not ",", as the decimal point in floating-point values in filter expressions

  • Rev 43224 - Note in README.developer that calls to "expert" functions should not be under 'if (tree)'

  • Rev 43277 - Draw protocol tree in proper GtkTreeView.

  • Rev 43561 - Bug 7427 - Link Wireshark with @[email protected], as @[email protected] doesn't necessarily include all the GLib libraries needed by Wireshark

  • Rev 43576 - Bug 7436 - Make nfs dissection not depend on tree construction.

  • Rev 43784 - Debian Bug 680056 - Crash in PPP dissector

  • Rev 43850 - Add some relevant ethertypes

Not Done:

• Move over the following revisions:
  • Rev 42899 - Bug 5735 - Unable to reassemble EAP-TLS fragments across multiple RADIUS packets – Doesn't apply to 1.4 (even though the bug refers to that version)

1.4.13

Released: May 22, 2012 Release Notes

Done:

• Move over the following revisions:

  • Rev 42114, Rev 42116 - Bug 7122 - Fixes Bluetooth HCI event infinite loop

  • Rev 42328 - Set up Wireshark to handle pcap-ng files on OS X

  • Rev 42329 - Set up Wireshark to handle pcap-ng files with a .ntar suffix on Windows

  • Rev 42330 - Include .ntar as a suffix for pcap-NG files and include .dmp as a suffix for pcap files

  • Rev 42407,Rev 42431 - Bug 7221 - Fix emem allocation alignment on SPARC (and other such CPUs)

  • Rev 41937, Rev 41938, Rev 41941 - Bug 6922 - Work around WinPcap bug where it returns an error but leaves junk in the error message string

  • Rev 41995 - Bug 7043 - Set the minimum length of the Internet Timestamp option to 4 bytes.

  • Rev 42108 - Bug 7130 - Use right names for items in a DNS CERT RR

  • Rev 42120 - Fix handling of one 5View file error, and update the name of the company from whom the 5View stuff came (and it's apparently "5View", not "5Views"); fix is from the 1.6 branch

  • Rev 42129 - Bug 7119 - ANSI MAP infinite loop

  • Rev 42144 - Don't byte swap bytes past the end of the packet data in Cisco Secure IDS IP logs

  • Rev 42200 - Fix packet-diameter bug which tries to allocate too much memory when an unknown vendor is encountered.

  • Rev 42388 - Bug 6779 - User-Password - PAP decoding passwords longer than 16 bytes

  • Rev 41741 - Bug 6983 - Bug 7118 - 802.3 infinite loop

  • Rev 42203 - Bug 7121 - BACapp infinite loop

  • Rev 42121 - Bug 7124 - Fixes LTP infinite loop

  • Rev 42122 - Bug 7125 - R3 infinite loop

1.4.12

Released: March 27, 2012 Release Notes

Done:

• Move over the following revisions:

  • Rev 39873 - Ask 8649 - Thou shalt not use proto_tree_add_string() with an FT_BYTES field.

  • Rev 40508 - Bug 6735 - Properly set the per-packet encapsulation on a seek-and-read on a K12 text file

  • Rev 40616 - Bug 6687 - Avoid a potential infinite loop by stopping dissection when a message has no tlvblock.

  • Rev 40644 - Bug 5687 - Some PGM options are not parsed correctly.

  • Rev 40727 - Bug 6766 - Fix incorrect usage of g_ascii_strdown() (don't port over the epan/wslua/wslua_proto.c changes, they don't apply to 1.4)

  • Rev 40769 - Disable the Save-As button in the toolbar if we cannot save the file.

  • Rev 40911 - wireshark-user 14477 - Update the documentation to match the sort order.

  • Rev 40927 - Disable the File->Merge… menu item if we cannot save the file.

  • Rev 40944 - Bug 6815 - Don't get strings with tvb_get_ptr() in IAX2.

  • Rev 37856,Rev 40949,Rev 40950 - wireshark-devel 24846 - Correctly display the TCP flags and allow tcp.flags filtering to work properly without potentially causing a crash.

  • Rev 40962 - Bug 6823 - Pass pinfo as an argument rather than as a global variable

  • Rev 41008 - Bug 6804 - Fix underflow/crash when loading corrupt WTAP_ENCAP_ERF PCAP file.

  • Rev 41025 - Bug 6765 - When handing off from HTTP to a dissector for the entity body, if we have a media type, use it to determine the subdissector before trying other means

  • Rev 41030 - ERF TYPE_PAD records don't necessarily have payload, so don't treat one that doesn't as an error

  • Rev 41037, Rev 41097, Rev 41098, Rev 41100, Rev 41130 - Bug 6846 - Don't reject pcap-NG blocks with options longer than 100 bytes

  • Rev 41036 - Bug 6847 - Fix DTLS decryption

  • Rev 41057 - Bug 6833 - Handle too-large pointer values in MPEG-2 Transport Stream packets

  • Rev 41143, Rev 41145, Rev 41152 - Check for pcap-NG blocks with a too-small block length (do this by moving Rev 41153 from the 1.6 branch - that rev involves manual intervention needed in the 1.6 and 1.4 branches)

  • Rev 41272 - Bug 6891 - Don't abort if Expression dialog user selects a predefined value which happens to be BASE_DEC_HEX or BASE_HEX_DEC.

  • Rev 41348 - Bug 5939 - Fix reading from pipe/stdin

  • Rev 41718 - Bug 6972 - ISAKMP : VendorID CheckPoint : Malformed Packet (Wrong minimum Length)

  • Rev 41734 - Bug 6232 - No error for UDP/IPv6 packet with zero checksum

Not Done

• Move over the following revisions:
  • Rev 41333 - Check for non-null-terminated names in NRB records, handle large NRB records – Does not exist in 1.4

1.4.11

Released: January 11, 2012 Release Notes

Done:

• Move over the following revisions:

  • Rev 39719 - Bug 6537 - Revert Rev 39665 from Bug 6472.

  • Rev 39744 - Bug 5575 - Fix memory errors in Lua dissectors.

  • Rev 39748 & Rev 39749 - No return within a TRY/CATCH/ENDTRY.

  • Rev 39777 - Reset protocol preferences to default before loading a new profile

  • Rev 39754 - Bug 6548 - 80211 QoS Control: Add Raw TID

  • Rev 39779 & Rev 39999 - Bug 6555 - CAPWAP dissector tries to allocate -1 bytes of memory during reassembly.

  • Rev 39831 - Bug 6564 - Add more length checks for integer values in SNMP variable bindings

  • Rev 39834 - Bug 6570 - The Originator protocol identifier is not present in the "provisioning actions operation -61".

  • Rev 39902 - Bug 6503 - Wireshark crashes if a field of type BASE_CUSTOM is applied as a column

  • Rev 39886 - Bug 6578 - Fix time stamp handling for Network Monitor 2.x-format files

  • Rev 39930 - Don't try to write packets with unsupported encapsulations to pcap-NG files

  • Rev 39944 - Don't try to write packets with unsupported encapsulations to Tektronix K12 text output files

  • Rev 39959 - Bug 3046 - "Closing File!" Dialog Hangs

  • Rev 39878, Rev 39882, Rev 39883, Rev 39884, Rev 39885, Rev 39894, Rev 39895 - Bug 6578 - Prevent some crashes with times that can't be handled by localtime()/gmtime()/ctime()/etc.

  • Rev 39961,Rev 39963,Rev 39986 - Bug 6561 - IPv4 UDP/TCP Checksum incorrect if routing header present.

  • Rev 40075 - Bug 6643 - Don't dissect an "April 1 RFC" TCP option; the option is officially unassigned and some people use it for their own experimental purposes

  • Rev 40076 - Bug 6560 - IPv6 UDP/TCP Checksum incorrect if routing header present with 0 segments left

  • Rev 40097, Rev 40099 (from 1.6 branch, not trunk) - Ask 5826, Ask 7618 - Report errors in Wireshark when trying to get the capabilities of an interface

  • Rev 40130 - fix for Rev 38723, some BGP AS_PATH packets were no longer dissected

  • Rev 40133 - Bug 6649 - ZigBee ZCL Dissector reports invalid status

  • Rev 40138 - Don't use pcap_version[]; on most platforms it doesn't give the version with which the program was compiled, and it can cause other problems

  • Rev 40153,Rev 40154,Rev 40155 - Bug 6250 - If the http object to be exported has no filename, use a generic "object" name instead. This avoids a Wireshark crash while still allowing the user to export the object.

  • Rev 40158 - Allow for true error reporting on Windows setup.

  • Rev 40162,Rev 40184 - Bug 3809 - Add missing </field> for data tree.

  • Rev 40164 - Bug 6663 - Clamp packet reported length at G_MAXINT to avoid crashes

  • Rev 40165 - Bug 6666 - Check for too-large packets in 5View files

  • Rev 40166 - Bug 6667 - Check for too-large packets in i4b files

  • Rev 40167 - Bug 6668 - Check for too-large packets, and some other problems, in iptrace files

  • Rev 40168, Rev 40174 - Bug 6669 - Limit the maximum frame table size in Network Monitor files

  • Rev 40169 - Bug 6670 - Check for bad record sizes in LANalyzer files

  • Rev 40170 - Check for too-large packets in *Peek-ng, nettl, and Apple Bluetooth PacketLogger files

  • Rev 40194 - Bug 6634 - Report a dissector bug, rather than crashing, for NULL arguments to some routines

  • Rev 40195, Rev 40196 - Bug 6634 - Don't bother looking at the destination link-layer address, correctly handle the source link-layer address

  • Rev 40245 - Bug 5727 - Restrict TFTP conversation once the second port is known.

  • Rev 40266,Rev 40275 - Bug 6391 - Avoid a potential buffer overflow

  • Rev 40274 - Fix mapping of Wiretap encapsulations to per-file-type encapsulations

  • Rev 40280,Rev 40281 - Bug 6562 - Incorrect Parsing of SCPS Capabilities Option introduced in response to Bug 6194 with Rev 38326

  • Rev 40304 - Bug 5580 - Only update the time elapsed between the previous displayed packet and this packet if the packet is actually displayed.

  • Rev 40316, Rev 40317 - Force DEP+ASLR in our DLLs.

  • Rev 40353 - Happy new year

  • Rev 40387 - Bug 6711 - Length field of pseudo header while computing UDP checksum is not correct

  • Rev 40423 - Bug 6719 - pcapio.c: bug in libpcap_write_interface_description_block

1.4.10

Released: November 1, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 36246 - Close fp in error case in ssl_parse_key_list to avoid leakage. (Coverity 597)

  • Rev 38948 - Ask 6207 - Fix locale problem with "Rel Start" time

  • Rev 38967 - Bug 4109 - Timestamp Sequence Field in Bundle Protocol fails if over 32 bits.

  • Rev 38977 - Bug 6336 - BACnet property time-synchronization-interval (204) name shown incorrectly as time-synchronization-recipients

  • Rev 39017 - Bug 6347 - Incorrect decoding of BIT STRING type

  • Rev 39031 - Bug 3778 - Wrong PCEP XRO sub-object decoding

  • Rev 39061, Rev 39062, Rev 39080 - Bug 6362 - Increase maximum number of identically named objects to be exported from 10 to 1000 and turn off error dialog boxes.

  • Rev 39213 - Always update splash screen when action has changed.

  • Rev 39214 - Added register action for loading Lua plugins.

  • Rev 39221 - Bug 5431 - Removed the protocol registration updates in the splash screen for Python dissectors.

  • Rev 39234 - Bug 6414 - Incorrect identification of UDP-encapsulated NAT-keepalive packets.

  • Rev 39248 & Rev 39251 & Rev 39258 & Rev 39267 & Rev 39268 - Bug 6241 - Fixed reallocation of UAT for custom headers.

  • Rev 39266 - Bug 1710 - Assertion failed when doing File->Quit->Save during live

  • Rev 39277 - Fix tshark -z conv,ipv6[,filter].

  • Rev 39297 - Bug 6435 - Typo FT_IPv4 isf FT_IPv6.

  • Rev 39390 - Bug 6452 - Fix handling of ajp13 response headers

  • Rev 39392 - Bug 6453 - Two minor bugs in Wiretap library: The Network Instruments Observer file format abbreviation is incorrect ("niobserverv") and the packet header magic number is incorrectly byte swapped a second time when reporting an invalid value

  • Rev 39445 - Bug 5987,Bug 6457 - Be sure to close and clean up any currently open file before opening a new file.

  • Rev 39485 - Bug 6471 - Don't assume system or interface scope IDs are 4 bytes long

  • Rev 39494 - Bug 6469 - GSM SMS fill bits corrected

  • Rev 39500 - Bug 6476 - Null pointer dereference in Infiniband

  • Rev 39506 - Bug 6449 - Last RTPS2 submessage allowed to have zero octets_to_next_header.

  • Rev 39508 - Bug 6479 - Buffer overflow in ERF

  • Rev 39529 - Improve documentation of text2pcap -l flag - fix terminology, point to http://www.tcpdump.org/linktypes.html

  • Rev 39558 - Fixed using signed 64-bits integer in custom column.

  • Rev 39562 & Rev 39563 - Added some Lua error messages (instead of terminating)

  • Rev 39569 - Display BASE_DEC_HEX correct for uint64.

  • Rev 39665 - Bug 6472 - Only have one Filter Expression window.

  • Rev 39666 - Bug 6295 - Support full 64-bit SNMP values.

  • Rev 39673 - Increase the size of a unknown INTEGER.

  • Rev 39681 - Don't ep_strdup the protocol name when register a Lua dissector.

1.4.9

Released: September 8, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 38247 - Avoid a possible infinite loop in dissect_delete().

  • Rev 38303,Rev 38304 - Bug 5731 - Unable to configure zero length SNMP Engine ID

  • Rev 38326 - Bug 6194 - Fixes for SCPS TCP option.

  • Rev 38399 - Bug 5848 - H.323 RAS packets missing from packet counts in "Telephony->VoIP Calls" and the "Flow Graph" for the call.

  • Rev 38410 - Bug 6135 - If we can't create the root tvb handle the failure gracefully.

  • Rev 38414 - Bug 6136 - Load our default Lua scripts from an explicit path.

  • Rev 38419 - Bug 6219 - Offset calculated incorrectly for sFlow extended data.

  • Rev 38444 & Rev 38445 - Bug 6228 - Apply filter if pressing enter when having a auto completion window and nothing is selected.

  • Rev 38491 - Bug 6229 - Fix parsing of PCAPNG files with comments.

  • Rev 38542 - Bug 6237 - Misdecoding 3G Neighbour Cell Information Element in SI2quater message due to a coding typo

  • Rev 38561 & Rev 38565 - Bug 6244 - mis-spelled word "unknown" in assorted files

  • Rev 38601 - Bug 6122 - Malformed Packet in decode for BGP-AD update

  • Rev 38680 - Bug 6257 - btl2cap extended window shows wrong bit.

  • Rev 38723 - Bug 6188 - BGP : AS_PATH attribute was decode wrong

  • Rev 38728 - Bug 6262 - packet-ndmp.c dissector incorrectly represents "ndmp.bytes_left_to_read" as signed.

  • Rev 38790 - Bug 6289 - Write out a default snaplen in pcap-ng files if the snaplen is unknown

  • Rev 38792 - Bug 6265 - Write out extension headers when writing out LINKTYPE_ERF packets.

  • Rev 38823 - Bug 6279 - COPY as CSV to clipboard from RTP stream analysis only copies 1st line many times.

  • Rev 38833 - Fix some problems in the code to handle CommView files.

  • Rev 38840 - Clean up guchar vs. guint8 in Wiretap, and fix some cases where we weren't properly filling in the pseudo-header for pcap and pcap-ng files.

  • Rev 34079 & Rev 38862 - Support negative values when viewing seconds with hours and minutes.

  • Rev 38865 - Bug 6276 - RTPS2: MAX_BITMAP_SIZE is defined incorrectly.

  • Rev 38910 - Bug 6311 - MEGACO context tracking fix - context id reuse

1.4.8

Released: July 18, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 34840 - Bug 5379 - Fix sflow decode error for some extended formats

  • Rev 37625 - Infinite loop in Ascend/Lucent parser.

  • Rev 37663 - Bug 6009 - Information transfer rate is a 7 bit value.

  • Rev 37668 - Bug 6022 - 802.11 Disassociation Packet's "Reason Code" field is imprecisely decoded/described

  • Rev 37681 - Really print the rpcap username when logging. (Applying this patch will need manual processing).

  • Rev 37756 - Bug 6028 - Don't assert on invalid custom columns, just set as invalid/unknown

  • Rev 37760 - Bug 5006 - Fix Lua TvbRange:tvb documentation

  • Rev 37761 - Bug 5199 - Fix Lua ByteArray:tvb documentation

  • Rev 37763 - Bug 5960 - Fix Lua TvbRange:string to return whole string

  • Rev 37771 - Bug 6055 - IEEE 802.15.4 GTS Descriptor count is a 3 bit field

  • Rev 37779 - Fix locale problem.

  • Rev 37780 - Print the filter string, if specified.

  • Rev 37783 - Bug 5941 - Don't increase the len field of the GByteArray that provides the backing data for an FT_BYTES field; the length must correspond to data that's actually there.

  • Rev 37784 - Bug 5895 - Add sanity checks in range.c

  • Rev 37785 - Bug 5895 - Add argument validation to Lua Pref.range

  • Rev 37786 - Bug 5896 - Remove "range" from Lua's Pref.range(), as this value shall be fetched from the "default".

  • Rev 37787 - Bug 5569 - Added check for invalid chars in abbrev in Lua ProtoField functions.

  • Rev 37788 - Bug 6018 - Add NULL checks in Lua GUI functions and fix typos in Lua error print

  • Rev 37812 - Bug 5715 - Use UTF8 in error messages to avoid problems with locale

  • Rev 37816 - Bug 5803 - #ifdef HAVE_LIBGCRYPT block includes a line too many.

  • Rev 37828 & Rev 37842 - Bug 6073 - Strengthen some heuristics + avoid big loops in RPCAP

  • Rev 37853 - Bug 4716 - Avoid false TCP zero window probe condition.

  • Rev 37854 - Bug 6059 - Don't abort processing of zero window probes and display keepalive payload.

  • Rev 37895 - Fetch svn revision also when checked out with git-svn

  • Rev 37923 - Fix memory leak, using ep_alloc() instead of g_malloc().

  • Rev 37927 - Bug 6093 - 802.11 Association Response Packet's "Status Code" field is imprecisely decoded/described

  • Rev 37930 - Bug 6044 - Avoid infinite loop in ansi_map dissector by incrementing offset by the correct number of bytes.

  • Rev 37945 - Subdissectors must be called regardless of whether "tree" is NULL or not.

  • Rev 37955 - Tighten MSRP header format check

  • Rev 37957 - Have GIOP heuristics take into account message size endianness.

  • Rev 38023 - Bug 6120 - Wireshark crash during RTP stream analysis

  • Rev 38064 - Bug 6131 - Improved check for valid custom column in preferences

  • Rev 38070 - Bug 4878 & Bug 6110 - Remove the warning "[Errno 2] No such file or directory: '/opt/local/lib/wireshark/python/1.4.8/wspy_dissectors'"

  • Rev 38072 - Handle versions of GTK+ where gdk-pixbuf is a separate library

1.4.7

Released: May 31, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 36304 - Fix TCP desegmentation/reassembly in face of retransmissions.

  • Rev 36691 - Bug 5834 - Decode the SI value in DATA messages correctly

  • Rev 36714 - Unbreak live capture using PCAPNG format

  • Rev 36723 - Bug 5605 - bug on gtk wireshark telephony->mtp3->msus

  • Rev 36958 - Fix a large/infinite loop in DICOM.

  • Rev 36975 - Bug 5817 - Handle NetMon "raw IP" link-layer types.

  • Rev 36997 - Bug 5889 - Incorrect decoding of timestamp type CP56Time2a.

  • Rev 37011 - Don't crash if we have a corrupt Diameter dictionary.

  • Rev 37068 - Don't crash if we have a malformed snoop file.

  • Rev 37081 - Bug 5908 Fix double free in tvb_uncompress()

  • Rev 37114, Rev 37115, & Rev 37116 - Use the new official MIME type for pcap files in the Info.plist for the OS X bundle and in the freedesktop.org wireshark.desktop file.

  • Rev 37128 - Integer overflow (and crash) in the Visual Networks file code.

  • Rev 37135 - Bug 5920 - DNP3 dissector incorrect constants AL_OBJ_FCTR_16NF _FDCTR_32NF _FDCTR_16NF

  • Rev 37183 - Clean up SMB output when info level not captured in request due to snapshot length.

  • Rev 37188 - Bug 5464 - AIM dissector has some endian issues.

  • Rev 37192 - Clean up some routine names.

  • Rev 37196 - Fix field display name in NTLMSSP.

  • Rev 37197 - Don't display version field in NTLMSSP if it's not present.

  • Rev 37199Bug 5928 - 3GPP QoS: Traffic class is not decoded properly.

  • Rev 37236 - Don't increase the len field of the GByteArray that provides the backing data for an FT_BYTES field; the length must correspond to data that's actually there.

  • Rev 37239 - Bug 5930 - Allow Lua dissectors to add FT_FRAMENUMs.

  • Rev 37286 - Fix the dissection of info level 2 for Transaction2 query and set operations (and other miscellaneous cleanups).

  • Rev 37370 - Bug 5947 - Fix the mask for extracting FMID.

  • Rev 37374 - Don't show hidden columns in TShark.

  • Rev 37426 - Bug 5954 - Avoid processing tvb when fragment dissection didn't create one.

  • Rev 37439 - Bug 5962 - Fix DHCPv6 remote identifier option parsing.

1.4.6

Released: April 18, 2011 Release Notes

Done:

• Rev 36694 - Fix for Bug 5837 - Wireshark (and tshark) crashes on tcp traffic

1.4.5

Released: April 15, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 35788 - Fix: Cygwin make fails after updating to bash v 4.1.9.2

  • Rev 36180 - Bug 5189 - Wireshark crashes when cancelling a large sort operation

  • Rev 34115 - Bug 5209 - Fix sscanf arguments, may cause crash

  • Rev 36160 - Account for locales where the comma is used for the decimal symbol

  • Rev 36162 - Bug 5743 - tshark incorrectly calculates tcp stream for SYN packets when port numbers are re-used

  • Rev 36166 - Account for locales where the comma is used for the decimal symbol

  • Rev 36174 - Bug 5662 - Wireshark crashes if SSL preferences RSA key is actually a DSA key

  • Rev 36178 - Bug 5746 - Wireshark unable to decode PPP in HDLC framing in an sflow (RFC3176) flow sample

  • Rev 36190 - Fix LDAP filter counter initialization.

  • Rev 36210 - Bug 5759 - All MySQL fields should be displayed as little-endian.

  • Rev 36226 - Prevent possible crash if a dumpcap file write error;

  • Rev 36232 - Bug 5762 - Error when opening snoop from Juniper SSG-140

  • Rev 36330 - Bug 3785 - Fix dissection of HTTP when the headers are split across multiple packets and there is no content-length

  • Rev 36470 - Bug 5803 - #ifdef HAVE_LIBGCRYPT block includes a line too many.

  • Rev 36471 - text2pcap: Fix a typo in the help message

  • Rev 36483 - Update the Windows GNUTLS packages.

  • Rev 36498 - Bug 5798 - Don't try to run svnversion if it isn't executable

  • Rev 36554 - Bug 5816 - Export proto_field_is_referenced

  • Rev 36608 - Bug 5754 & Bug 5793 - Crash in X.590if

1.4.4

Released: March 1, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 33136 - Bug 2907/Bug 5601 - Use find_or_create_conversation() rather than only conversation_new().

  • Rev 34018 - Bug 5157 - Crash in NTLMSSP dissector

  • Rev 34300 - Bug 5614 - NTLMSSP dissector may fail to compile due to space embedded in C comment delimiters.

  • Rev 34618 - Bug 5326 - Use col_add_str to store column text from Lua dissector.

  • Rev 35556 - Bug 5584 - Corrections to ANSI MAP ASN.1 specifications.

  • Rev 35583 - Bug 5585 - When searching in packet bytes, the field and bytes are not immediately shown.

  • Rev 35594 - Allow for expert items to be actually attached somewhere.

  • Rev 35599 - Allow presentation of Gauge32 values larger than 0x7FFFFFFF.

  • Rev 35621 - Bug 5606 - Allow (value-)string matches against BASE_HEX and BASE_DEC_HEX fields.

  • Rev 35626 - Fix a memory issue in the P_Mul dissector

  • Rev 35651 - Bug 5615 - Allow name resolving for IPv6 Link Local and Multicast addresses

  • Rev 35686 - Bug 5627 - DHCPv6 dissector formats DUID_LLT time incorrectly

  • Rev 35726 - Fix two cases of 'if (x = y)' which should be 'if (x == y)'

  • Rev 35737 - Bug 5639 - Allow for IEEE 802.3bc-2009 style PoE TLVs.

  • Rev 35777 - Bug 5646 - Fixes to the HIP packet dissector

  • Rev 35791 - Bug 5652 - Wireshark could free an invalid pointer while reading a pcap-ng file.

  • Rev 35795 - Bug 5630 - Use col_add_str to store column text from Lua dissector.

  • Rev 35888 - Bug 5665 - Accommodate the CMake build on Ubuntu 10.10.

  • Rev 35953 - Fix a buffer overflow in the Nokia DCT3 file reader.

  • Rev 36029 - Bug 5717 - Infinite recursion in CLDAP and SMB.

  • Rev 35561Rev 35566 - Switch to using proto_add_bits_item in a couple of places and fix missing stepping of bit_offset.

  • Rev 35595Rev 35596Rev 35597 - Bug 5598 - In MM context the container contains IE:s not a complete DTAP message.

  • Rev 35633 - Bug 4645 - Wireshark Crashing by pressing 2 Buttons

  • Rev 35679 - Bug 5593 - The attemt to pretify MSISDN and IMSI breaks the ULP dissection.

  • Rev 35788 - nmake [Wireshark] on Windows fails after updating cygwin bash to v 4.1.9-2

  • Rev 35889 - Bug 5668 - Update E.212 dissector according to Polish national regulatory MNC assignment document.

  • Rev 35914 & Rev 35916 - Bug 5677 - Handle MIME type application/ipp as IPP.

  • Rev 35947 - Make sure RTP conversations are created.

  • Rev 35949 - Bug 5653 - Display "Day of Year" for January 1 as 1, not 0.

  • Rev 35999 - Bug 5700 - Correctly display the Final CAP Slot field.

  • Rev 36028 - Bug 5702 - Swap SRC_AS_PEER and DST_AS_PEER.

  • Rev 36052 - Bug 5716 - dumpcap: -q option behavior doesn't match documentation

  • Rev 36061 - Bug 5698 - Potential access violation when writing to LANalyzer files

  • Rev 36096 - Close UAT file after loading

  • Rev 36101 - Bug 5732 - LDAP filter strings can consume excessive memory.

• Update user-guide library, tag and include in installer.

1.4.3

Released: January 11, 2011 Release Notes

Done:

• Move over the following revisions:

  • Rev 33820 - Bug 5426- Fix display of Client's FQDN and clear up the confusion with the S, O and N bits from the RFC descriptions.

  • Rev 34764 - (Trivial): Fix up a comment.

  • Rev 35004 - Fix dissection on Via header.

  • Rev 35010 - Bug 5420 - Cannot load wpcap.dll or packet.dll from the Wireshark application directory.

  • Rev 35015 - Bug in tvb_get_bits32()-

  • Rev 35016 - Bug 5430 - Remove Supported Channels length check.

  • Rev 35021 - Bug 5393 - Wrong length calculation in new_octet_aligned_subset_bits() (PER dissector.

  • Rev 35023 - Bug 5394 - Function dissect_per_bit_string_display might read more bytes than available (PER dissector).

  • Rev 35030 - Add libtool version info to libwsutil.

  • Rev 35055 - Bug 5447 - Fix assertion when using ASN.1 type table

  • Rev 35056 - Bug 5444 - Bug with RWH parsing in Infiniband dissector.

  • Rev 35074 - Q\&A 1147 - Fix "colorize as filter" functionality

  • Rev 35086 - Bug 5421 - Wireshark crashes with Copy -> Description on date/time fields

  • Rev 35090 - Bug 5453 - Use GetNativeSystemInfo() call instead of GetSystemInfo() on Windows when available to get accurate processor architecture when running 32-bit Wireshark under WOW64 (x86 emulator for 64-bit Windows)

  • Rev35091 - Bug 5455 - Delegated-IPv6-Prefix(123) is shown incorrect as X-Ascend-Call-Attempt-Limit(123)

  • Rev 35097 - Fix the range limits on the SCCP user table.

  • Rev 35115 - Don't crash trying match a BASE_CUSTOM field against a hex number

  • Rev 35128 - Bug 5463 - Stop ep_strbuf_new() from truncating final character in newly created & copied strings

  • Rev 35151 - mp2t dissector: init defragmentation and reassembly each time a capture file is loaded

  • Rev 35153 - Bug 4141Rev 35154Rev35155rev 35156Rev 35175Rev 35176 - Reassemble.c leaks memory for GLIB > 2.8 Free fragment data and fragment keys in fragment_table when neccessary. reassembled_table remains to be fixed.

  • Rev 35194 - Bug 5475 - Properly dissect Packet Flow Identifier IE

  • Rev 35216 - Bug 5485 - Properly dissect TLSv1.2 CertificateRequest messages

  • Rev 35228 - Bug 5505 - Dissect LTE-PDCP upload packets as upload packets, not download packets

  • Rev 35241 - Bug 5510 - CIGI 3.2 and 3.3 support is repaired.

  • Rev 35247 - Bug 5513 - Prepare RTP streams filter from Fwd and Rev parts.

  • Rev 35252 - Bug 5517 - MEG ID, ICC-based format is text, not binary.

  • Rev 35267Rev 35271 - Fix the Message numbering.

  • Rev 35282 - Bug 5523 - EAP WPS RF band may be '2.4 GHz and 5 GHz'.

  • Rev 35287 - Bug 5521 - LTP dissector could cause assertion if reception claim count is too big.

  • Rev 35291 - in Network Monitor files, a later packet can have a seek offset less than an earlier packet, so don't treat that as an error.

  • Rev 35292 - Bug 5530 - Fix an overflow in the MAC LTE dissector.

  • Rev 35295 - Update capture options dialog description.

  • Rev 35298 - Bug 5530 - Fix an overflow caused by a too-long SNMP engineId UAT preference.

  • Rev 35304 - eliminate dissector-bug assertion in SAMR dissector.

  • Rev 35313 - Bug 4211 - eliminate dissector-bug assertion in TCP dissector.

  • Rev 35318 - Bug 5539 - Fix an overflow in the ENTTEC dissector.

  • Rev 35319 - properly dissect Query Lists; eliminates dissector-bug assertion in TN3270 dissector.

  • Rev 35322 - New Year.

  • Rev 35328 - fix some misdissections in the UNISTIM dissector.

  • Rev 35330 - handle OCTET STRINGs dissected as a field if the OCTET STRING's length isn't appropriate for the type of the field.

  • Rev 35332 - in the Diameter dissector, do length checking for Integer32, Integer64, Unsigned64, Float32, and Float64, as well as for Unsigned32.

  • Rev 35333 - Include dumpcap in the description.

  • Rev 35335 - in the Diameter dissector, don't return a value label from AVP dissectors if the length of the AVP is wrong.

  • Rev 35336 - in the TN3270 dissector, display the items in the Query List under the top-level Query List item, and properly display the Request Type for a Read Partition request.

  • Rev 35337 - fix handling of VMS TCPtrace captures that don't end with a TCPIPTRACE-W-BUFFERSFUL error message.

  • Rev 35342 - Bug 5537 - Fix ep memory corruption in BER dissector

  • Rev 35356 - Bug 5323 - Further fixes to the LTP dissector's handling of Report segments

  • Rev 35357, Rev 35369 - Bug 4048 - Don't use DISSECTOR_ASSERT() to handle errors in packet data.

  • Rev 35412 - Tell the user about the Q\&A site.

  • Rev 35441 & Rev 35443 & Rev 35444 & Rev 35467 - Update the menu descriptions and screenshots

1.4.2

Released: November 19, 2010 Release Notes

Done:

• Move over the following revisions:

  • Rev 33460 - Add a target which creates a zip file containing our .pdb files.

  • Rev 34124 - Remove a few more calls to check_col()

  • Rev 34507 - Bug 5296 - Fix crash for 'tshark -G values' when printing an "extended value string".

  • Rev 34522 - Fix Rawshark's ability to read live data on 64-bit systems.

  • Rev 34523 - Bug 5299 - Fix decode of I&M0FilterData

  • Rev 34524 - Bug 5300 - Fix decode of MRP LinkUp and MRP LinkDown messages.

  • Rev 34527 - Make the telnet data lines filterable elements.

  • Rev 34557 - Use port range for SCTP, too

  • Rev 34563, Rev 34564 - Fix the progress bar when loading compressed files.

  • Rev 34575 - Bug 5303 - Infinite loop in ZCL Discover Attributes dissection

  • Rev 34581 - Bug 5318 - Fix SE memory overflow in LDSS dissector.

  • Rev 34583 - Copy GDK pixbuf loaders libs to the Wireshark.app

  • Rev 34595 - Cleanup of unnecessary tree == NULL checks in ZCL dissector.

  • Rev 34597 - Bug 5320 - Clean up properly after Lua Dumper is closed.

  • Rev 34601 - Fixed "Compiled with" information in the About box.

  • Rev 34657 & Rev 34658 & Rev 34659 - Treat unknown MIME multipart as multipart/mixed

  • Rev 34660 & Rev 34661 - Bug 5340 - Calculate correct start time for "View as time of day" in IO Graph.

  • Rev 34665 - Bug 5344 - Wireshark tools do not detect and read some ERF files correctly

  • Rev 34709 - Redissect packets instead of reload file on UAT changes.

  • Rev 34742 - Bug 5353 - Send all of editcap's usage output to the same fd

  • Rev 34750 - Bug 5357 - Fix IP Timestamp Option

  • Rev 34755 - Bug 5289 - A GTK-ERROR can occur in packets when there are multiple Netbios/SMB headers in a single frame

  • Rev 34759 - Bug 3894 - File-Open Display Filter is overwritten by Save-As Filename

  • Rev 34762 - Bug 5364 - Fix PDU header highlighting

  • Rev 34765 - Bug 5368 - AgentX dissector cannot handle null OID in Open-PDU

  • Rev 34779 - Prevent false related SIP packet information

  • Rev 34783 - Bug 5330 - Network Instruments' trace files sometimes cannot be read with an error message of "Observer: bad record: Invalid magic number"

  • Rev 34785 - Corrected an if-statement in field_select_row_cb() where checking for hfinfo->strings and hfinfo->display.

  • Rev 34791 - Bug fix: Running tshark with the following command will leave a temp file on the file system.

  • Rev 34796 & Rev 34821 - Bug 5374 - Patch that fixes overflowing highlighting of data.

  • Rev 34799 - Display the the PDU length as "cut short"if it crosses the boundary of the packet and no more packets are available.

  • Rev 34823 - Handle large gap reports when doing a TSN plot.

  • Rev 34829 - bug 5378 - Missing path separator in config.nmake

  • Rev 34841 - No need for the libpcap workaround in OS X 10.6.5.

  • Rev 34848 - Bug 5389 - Use python comments in python code.

  • Rev 34867 - Export proto_item_append_string().

  • Rev 34879 - Bug 5388 - Skip reserved word in ANCP OAM-Loopback-Test-Parameters TLV.

  • Rev 34938 - Bug 5309 - dumpcap use 50% of CPU.

1.4.1

Released: October 11, 2010 Release Notes

Done:

• Move over the following revisions:

  • Rev 33525 - Get our dynamic payload name from the correct location.

  • Rev 33603 - Bug 5033 - 3GPP GTPv2 header Update.

  • Rev 33677 - Minor code cleanup.

  • Rev 33977 - Give all files in the ringbuffer the same group-id

  • Rev 33994 - Bug 5132 - Suspend bytes-in-flight calculation when packets are missing in the trace until the next ACK is seen

  • Rev 34001 - Bug 5076 - Packet details have errors when decode MAP V2 PRN_ACK msg.

  • Rev 34011, Rev 34012 & Rev 34030 - Bug 5002 - Avoid crash when renaming a display filter macro.

  • Rev 34031 - Bug 5162 - Set correct length for GTP header.

  • Rev 34033 - Bug 5163 - Allow space in list of hidden columns in preferences.

  • Rev 34187, Rev 33616, Rev 34192, Rev 34204 - Only use gzcleareof() if we have it

  • Rev 34036 & Rev 34037 - Bug 5167 - Wireshark don't show mgcp calls in "Telephony" => "VoIP calls"

  • Rev 34038 - Bug 5165 - 1.4 version does not display the t.38 graph.

  • Rev 34039 - Ensure we always print the heading when dumping PSML and CSV.

  • Rev 34058 - Fix start offset and length handling in SEQUNCE OF (caused Gtk crash for sequences at the end of frame)

  • Rev 34062 - Bug 5179 - GTPv2: IMSI is decoded improperly.

  • Rev 34069 - Bug 5186 - Fix the decoding of the maximum/guaranteed bit rates for uplink/downlink.

  • Rev 34084 & Rev 34085 & Rev 34086 & Rev 34087 & Rev 34089 - Decode the entire 12 bit TCP flags

  • Rev 34122 + Rev 34129 - Bug 5160 - Get our official Win64 builds running on pre-Vista Windows

  • Rev 34101 - Decode SLL payloads using a dissector table based on sll.ltype.

  • Rev 34111 - Bug 5230 - BER stack overflow.

  • Rev 34113 - Bug 5214 - Incorrect decoding of List of ARFCN in BCCH frequency list.

  • Rev 34154 - Bug 5220 - In call flow, don't show deleted codecs, and fix codec listing.

  • Rev 34176 - Bug 5239 - The CLDAP attribute value on a CLDAP reply is no longer being decoded.

  • Rev 34177 - Bug 5243 - [NAS EPS] Traffic Flow Template IE dissection bugs.

  • Rev 34179 - Bug 5246 - [NAS EPS] Use Request Type IE defined in 3GPP 24.008

  • Rev 34184 - Bug 5172 - Properly retrieve the H.245 endpoint IP address

  • Rev 34199 - Bug 5252 - Use real IPv6 destination address when RH0 has 0 segments left.

  • Rev 34223 - Fix crash creating a filter (using "Expression …") for a field with an extended value_string.

  • Rev 34239 - Track offset even when tree==NULL

  • Rev 34080 - Bug 5194 - Wireshark mistakenly writes "not all data available" for IPv4 checksum - Fix a regression introduced in 1.4.0

  • Rev 34216 - Bug 2225 - Disable sorting while capturing. (requires manual merge because of menu changes in trunk)

  • Rev 34234 - Disable the "File Set" menu while capturing. (requires manual merge because of menu changes in trunk)

  • Rev 34265 - Bug 553 - Move Wireshark's upper left corner on screen if the requested position is outside of the monitor's viewable area

  • Rev 34267 - Bug 5261 - Fix offset errors

  • Rev 34280 - Fix the libsmi workaround

  • Rev 34282 & Rev 34283 - Bug 5265 - Unable to capture using pipes w/Mac OS X

  • Rev 34284 - Constructed octet strings may contain zero encodings.

  • Rev 34303 - Bug 2519 - In Linux cooked captures, don't show the source address if it's zero-length (and limit it to 8 octets)

  • Rev 34337 - Bug 2225 - Ensure we always show the selected frame when changing sort order.

  • Rev 34358 - Bug 5267 - MRP packet is not correctly parsed in PROFINET multiple write record request.

  • Rev 34271 Rev 34272 Rev 34295 Rev 34298 - Bug 5251 - NTLMSSP_AUTH domain and username truncated to first letter with IE8/Windows7 (generating the NTLM packet)

  • Rev 34385 - Bug 5274 - Fix TFT decoding when having several Packet Filters defined.

  • Rev 34386 - Bug 5277 - Don't core on Solaris if no SSL password is given

  • Rev 34395 - Bug 5271 - MYSQL: Fix FIELDS_PACKET dissection and SHOW_FIELDS response handling

  • Rev 34408 - Fix crash in RPC if subdissector changed private_data and threw an exception

  • Rev 33701 - Bug 2691 - Fix MySQL query response dissection.

  • Rev 34384 & Rev 34388 - Show more ICMPv6 ND information.

  • Rev 34446 & Rev 34447 - Fix some menu entries

  • Rev 34468 - Remove the border around the main window.

• Update services file (we may want to automate this, like manuf and enterprise numbers)
• Update Windows compiled help file (in lib32/lib64 /trunk and /trunk-1.4)

1.4.0

Released: August 30, 2010 Release Notes

Done:

• Move over the following revisions:

  • Rev 33846 - Bug 5114 - Fix infinite loop in bootp dissector

  • Rev 33676 - Use ep-allocated strings for our data source names in the PPI dissector.

  • Rev 33683, Rev 33684 - Use local copy of Wireshark documentation on UNIX if it's available.

  • Rev 33689 - Fix the GTP' header dissection a bit.

  • Rev 33694 - Bug 5011- Put the TCP window size field back.

  • Rev 33719 - Remove experimental marking on NEW_PACKET_LIST

  • Rev 33725 - Bug 5081- Fix for 'Uninitialised pointer in packet-rtsp.c causes crash'

  • Rev 33735 - Bug 5087 - Protect tvb_* functions in a TRY-CATCH block

  • Rev 33742 - Compile without HAVE_C_ARES and HAVE_GETHOSTBYNAME2.

  • Rev 33747 Rev 33748 Rev 33749 Rev 33750 - Bug 5051 - packet-bacapp.c: corrected the dissection of reassembled UDP packets

  • Rev 33743Rev 33757 - Fix a crash when an entry in the popup menu is selected and there are no expert info entries.

  • Rev 33751 - DICOM better reassembly, fixed sporadic decoding and export issues, several other improvements.

  • Rev 33765Rev 33771 - 3 potentially risks of endless loop eliminated.

  • Rev 33772 - Bug 5101- Saving Flow graph Analysis produces an incomplete text file

  • Rev 33764Rev 33774Rev 33776Rev 33777 - Bug 5130 - Dissector bug, protocol SDP: tvbuff.c:629: failed assertion "tvb && tvb->initialized"

  • Rev 33775Rev 33778 - Call tvb_get_bits32() if leading_zero_bits > 16.

  • Rev 33780 - Bug 5105 - IP should not compute the header checksum if within an error packet such as ICMP.

  • Rev 33773 - Change font for packet information from Courier to Monaco.

  • Rev 33789 - Update ZRTP dissector to draft-22

  • Rev 33791Rev 33792 - …Those routines do *not* need to read the packet data to see if it matches; that lets them run much faster.

  • Rev 33794Bug 5110 - Add missing break.

  • Rev 33797 - Handle non-Latin filenames when we're called via ShellExecute on Windows.

  • Rev 33798Rev 33799 - Fix up decoding of bitfields in the aligned variant.

  • Rev 33811 - Bug 5080 - tvb_get_bits32 produces malformed_packet if no_of_bits < 25 and tvb remaining = 3

  • Rev 33813 - Typo - wrong IE code for APN aggregate maximum bit rate in message Activate default EPS bearer context request.

  • Rev 33816, Rev 33819 - Bug 5066 - Properly shorten filenames with multi-byte sequences in the welcome screen.

  • Rev 33842 - Bug 5052 - txOffset and updateID in ZigBee beacon are optional.

  • Rev 33504 - dftest and randpkt are installed during make install, but they are not documented in any man page.

  • Rev 33541 - Only link programs that call stuff in Application Services or Core Foundation with those frameworks.

  • Rev 33683 - Use local copy of Wireshark documentation on UNIX if it's available.

  • Rev 33876 - New packet list is no longer experimental.

  • Rev 33832 - The Mobile Status msg in BSSAP+ has IMSI as first possible IE.

  • Rev 33880 - Add !ENDIF if needed.

  • Rev 33887 - Bug 5127 - Fix for attribute boolean

  • Rev 33888 - new_packet_list_column_button_pressed_cb(): return gboolean (not void): it's an event callback;.

  • Rev 33894 - Update libtoolize files

  • Rev 33916, Rev 33917, Rev 33924, and Rev 33925 - Make sure DLLs are loaded safely on Windows.

  • Rev 33921 and Rev 33922 - Include WinPcap 4.1.2 in the U3 and PortableApps builds - Also requires WpdPack_4_1_2.zip

  • Rev 33198 - Do some constifying [or other] based upon gcc -Wwrite-strings

  • Rev 33534 - There shouldn't be any need to build stuff in the top-level directory with the Lua or libgnutls flags.

  • Rev 33551 - Make frames containing Malformed expert items match with "malformed" display filter.

  • Rev 33692 - Fix cases where the type of a for loop variable is smaller than the type of the "end" variable.

  • Rev 33707 - Avoid a possible dereference of null pointer.

  • Rev 33906 - Bug 5126 - ERROR:capture.c:141:capture_start: assertion failed: (capture_opts->state == CAPTURE_STOPPED)

  • Rev 33920 - Fix wrong length of CSeq Method parameter.

  • Rev 33941 - Bug 5148 - Avoid crash in ps_clean_string().

  • Rev 33947 - Bug 5146 - Make wireshark-dev depend on the right automake.

1.4.0rc2

Released July 29, 2010

Done:

• Move over the following revisions:

  • Rev 33158 - Bug 4877 - Fix "/* within comment" error

  • Rev 33159 - Get rid of C++/C99-style comment

  • Rev 33174 - Corrected a typo in "display seconds with hours and minutes".

  • Rev 33178 - Print correct RLRE reason in Info column.

  • Rev 33200 - Fix a copy paste error.

  • Rev 33201 - Add dissector_table_foreach.

  • Rev 33204 - GLIB 2.14 necessary to compile Wireshark with Protocol help.

  • Rev 33209 - Fix: Malformed packet if port is missing from path.

  • Rev 33210 - DECT: Fixed display of full slot data

  • Rev 33212 - Bug 4868 - Fix for: Wireshark crash selecting Inter-Asterisk exchange v2 packet data

  • Rev 33219 - Add info to the "Enable OID resolution" tooltip about the 'SMI paths' and 'SMI modules' preferences

  • Rev 33222 - Rename OSX dmg to include "32" or "64" - Also needs web page updates!

  • Rev 33223 - Bug 4871 - Fix for: Wrong Ack value in TCP flow graph when using relative sequence numbers

  • Rev 33243, Rev 33252, Rev 33316 - Enable Lua by default

  • Rev 33250 - Add the Gigamon ethertype.

  • Rev 33253 - Document a long supported but hidden tshark -G option.

  • Rev 33255 - Use top level tree when using dissectors from "eth.trailer" heuristics.

  • Rev 33256 - Add support for Gigamon headers (timestamp, source port, length, etc)

  • Rev 33257 - Dissect 3GPP Diameter S6a flags.

  • Rev 33258 - 3GPP NAS EPS: missing sequence number before ciphered text

  • Rev 33264 - Bug 4413 - Revert back to the old Flags entry.

  • Rev 33265 - Add an expert info for "4 NOP in a row" in IP and TCP.

  • Rev 33266, Rev 33279, Rev 33281, Rev 33284, Rev 33285 & Rev 33288 - Bug 3402 - Add "Hide Column" functionality.

  • Rev 33267 - Bug 4875 - Don't hint at a local User's Gude when there isn't one.

  • Rev 33268 - Add get_column_visible & set_column_visible

  • Rev 33269 - Bug 4888 - Convert DSCP column to the proper custom column filter code.

  • Rev 33270 - Bug 4888 - Restore setting DSCP column value, when relevant.

  • Rev 33271Rev 33272Rev 33273Rev 33275Rev 33276 - gmhdr clean up

  • Rev 33274 - Bug 4894 - wlan_mgt.tag.interpretation triggers Gtk-ERROR **: Byte index 6 is off end of the line aborting…

  • Rev 33277 - Corrected printed name for id-permissiveAttributes.

  • Rev 33280 - Bug 4897 - Fix crash found by fuzz-test

  • Rev 33282 - Bug 4852 - Set RSSI column values when tree==NULL

  • Rev 33283 - Highlight hex dump bytes fix.

  • Rev 33286 - Update README.developer.

  • Rev 33287Rev 33291 - Ensure no exceptions thrown while checking for Gigamon trailer.

  • Rev 33293 - Strengthen test for Gigamon trailer

  • Rev 33294 - Dissect 3GPP S1AP UE Capability Info Indication.

  • Rev 33330 - 3GPP S1AP Transparent Container.

  • Rev 33301 - Fix "Delta time displayed" for the first displayed packet.

  • Rev 33304 & Rev 33305 - Add a "Follow Stream" button to the conversations dialogs.

  • Rev 33312Bug 4910 - SDCCH8 subchannel decoding error in GSM RR dissector.

  • Rev 33315 - Ensure we use the numeric value when creating a filter from a custom column entry displaying a integer value.

  • Rev 33319 - Run uat->post_update_cb() in uat_load().

  • Rev 33321 - Fix SigComp UDVM overflows.

  • Rev 33327 - Bug 4916 - zlib-1.2.5 cause tshark to stop live capture

  • Rev 33329 - Bug 4926 - Avoid crash when adding SNMP Users.

  • Rev 33331 - Bug 4896 - Fixed count of displayed packets.

  • Rev 33332 & Rev 33334 - Always show packets with Time Reference (as in the old packet list).

  • Rev 33335 - MIPv6 Heartbeat

  • Rev 33356 - Add the missing packet-s1ap.h.

  • Rev 33236 Rev 33238 Rev 33348 - Bug 4932 - Large loop in the Netflow dissector.

  • Rev 33380 - Add End Marker.

  • Rev 33384 - Bug 4891 - new_packet_list: Autoscroll turns off in Wireshark 1.4.0rc1

  • Rev 33385 - Fix SIP array bounds.

  • Rev 33398 - Remove some double GTK_TREE_VIEW casts

  • Rev 33399 - Fetch filter and copy summary from correct column after DND columns.

  • Rev 33400 - Recreate the packet list on DND columns.

  • Rev 33410 - Properly return exit status from dumpcap on Windows.

  • Rev 33411, Rev 33412, Rev 33413 - More cleanly report uncaught exception status from dumpcap on Windows.

  • Rev 33361, Rev 33488 - GeneralizedTime and UTCTime dissection checks.

  • Rev 33341, Rev 33388, Rev 33390, Rev 33392 - Initialize variables.

  • Rev 33430 - Bug 4968 - Revert COL_DSCP_VALUE back to value set in packet-ip.c

  • Rev 33433 - We have no first and second block when dumping bits view, so no adjustments.

  • Rev 33440 - Show dropped packets counter after stopping a live capture, etc.

  • Rev 33441 - Improve heuristics for packet-ipsec-tcp to pick up less packets to TCP port 10000.

  • Rev 33455 - Add missing else handling a zero msg_auth_code.

  • Rev 33457 - Bug 4982 - Handle concatenated Status and other OMAPI message.

  • Rev 33458 - Don't set SDKROOT when building the Wireshark.app front end so we can build the OS X dmg on both Leopard and Snow Leopard.

  • Rev 33340 - Initialize variables in DCERPC DRSUAPI.

  • Rev 33358 - Make sure dissect_ber_integer sets a value.

  • Rev 33363 - Bug 4950 Don't try to use a NULL tvb in call_ber_oid_callback().

  • Rev 33389 - Initialize variables in DCERPC NETLOGON.

  • Rev 33396 - Initialize a variable in SPNEGO.

  • Rev 33472 - Bug 4854 - Don't crash if a column is present twice.

  • Rev 33481 - Check field lengths in GMHDR.

  • Rev 33483 - Bug 4993 - Mac support flags are little endian too.

  • Rev 33525 - Display the correct RTP dynamic payload name in the VoIP calls sequence diagram.

  • Rev 33526 - Don't pass tvb data to col_set_str(), as it will not stay around.

  • Rev 33527, Rev 33528, Rev 33529 - Make 'tshark -T fields' print all values for fields with multiple occurences

  • Rev 33549, Rev 33550 - Bug 5008 - VRRPv3

  • Rev 33556 - Bug 5015 - Remove redundancy in VRRP MAC name resolution.

  • Rev 33557 - XDMCP Query has authentication names.

  • Rev 33561 - Bug 5018 - Show the reserved values in icmpv6 type 135, 137 and 143 in the packet tree.

  • Rev 33580, Rev 33581,Rev 33605, Rev 33606 & Rev 33615 - Bug 5020 - Added PacketCable Multimedia I05 support.

  • Rev 33585 - Bug 5019 - Fix NFS4 clientaddr4 parsing.

  • Rev 33602 - Bug 5039 - Fixed adding a boolean value as a custom column.

  • Rev 33611 - Bug 5037 - Fix SCSI command ACCESS CONTROL IN.

  • Rev 33617 - Bug 5021 - VoIP Calls 'ordering by time' is incorrect, EG 17.1111 comes before 8.1234

  • Rev 33623 - Bug 5044 - Correct V and F flag interpretation of 6lowpan Mesh Addressing Type and Header.

  • Rev 33624 - Bug 5047 - Fix 6lowpan order of non compressed fields and deep hops left field.

  • Rev 33630 - Fix 6lowpan.

  • Rev 33637 - Bug 5053 - packet-ipmi.c: Fix potential infinite loop: for (guint8=0; guint8 < guint; guint8++);

  • Rev 33643 - Fix unistim message length tracking

  • Rev 33648 - Bug 5055 - Wrong decoding of GTP Prime (GTP') Packets.

  • Rev 33654 - Bug 5065 - fixes the dissection of the PDN Disconnect Request message in case the optional Protocol Configuration Options IE is not present.

• Copy over get_ber_length and try_get_ber length from the trunk.

• Update WinPcap installer to 4.1.2

1.4.0rc1

Released June 10, 2010

Done:

• Move over the following revisions:

  • Rev 33157 - Change dissection of User Location Info (ULI) to show the spare bits in the protocol tree and don't show ECI as a bitfield

  • Rev 33168 - Bug 4306 - Avoid a crash when deleting the first character in the filter.

---

Imported from https://wiki.wireshark.org/Development/Trunk-1.4 on 2020-08-11 23:13:18 UTC