14 DAY TRIAL // Wireshark, the world's most popular network protocol analyzer software, has been updated today to version 2.2.4, the fourth bugfix and security update to the stable 2.2 series.
Wireshark 2.2.4 comes approximately five weeks after maintenance update 2.2.3 and provides patches for two recently discovered vulnerabilities, namely wnpa-sec-2017-01 and wnpa-sec-2017-01. While the first one could make the ASTERIX dissector go into an infinite loop, the second could make the DHCPv6 dissector go into a large loop.
A total of 22 bugs have been fixed since Wireshark 2.2.3, including a regression that would decode IEEE17221 (AVDECC) as IEEE1722 (AVB Transportation Protocol), an issue that would not allow Wireshark to correctly recognize V6 DBS Etherwatch capture files, as well as a crash that might occur when utilizing the VoIP flow sequence.
It also addresses a crash that occurred when dissecting the WDBRPC Version 2 protocol with the "Dissect unknown program numbers" option enabled, another crash that could have occurred when trying to merge .pcap files, and an issue with the SMTP BDAT dissector that wouldn't allow it to revert to command-code after DATA.
We recommend checking out the full changelog attached at the end of the article if you're curious to know what exactly has been fixed in Wireshark 2.2.4, which is to be considered a minor maintenance update. However, we still recommend updating the software on your computer as soon as possible.
Updated protocol and capture file support
Besides patching known vulnerabilities and fixing various bugs, the new Wireshark stable release also updates the protocol support for the IEEE 1722.1, IEEE 1722, PPP, ISAKMP, 6LoWPAN, DVB-CI, GSM MAP, ENC, UDLD, TCP, SMTP, Radiotap, MS-WSP, UCD, QUIC, and RPC protocols.
The capture file support has been updated as well in Wireshark 2.2.4, but only for Daintree SNA and DBS Etherwatch. You can now download Wireshark 2.2.4 for GNU/Linux, macOS, and Microsoft Windows operating systems from our website, but please note that some known problems are present in this version.