Wireshark

  • Riverbed Technology
  • WinPcap
SHARKFEST '13 - Wireshark Developer and User Conference - June 16-19, 2013 - UC Berkeley
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Security Advisories

The following Wireshark releases fix serious security vulnerabilities. If you are running a vulnerable version of Wireshark you should consider upgrading.

  • wnpa-sec-2013-31: ETCH dissector large loop, fixed in 1.8.7
  • wnpa-sec-2013-30: MySQL dissector infinite loop, fixed in 1.8.7
  • wnpa-sec-2013-29: Websocket dissector crash, fixed in 1.8.7
  • wnpa-sec-2013-28: MPEG DSM-CC dissector crash, fixed in 1.8.7
  • wnpa-sec-2013-27: DCP ETSI dissector crash, fixed in 1.8.7
  • wnpa-sec-2013-26: PPP CCP dissector crash, fixed in 1.8.7
  • wnpa-sec-2013-25: ASN.1 BER dissector crash, fixed in 1.8.7, 1.6.15
  • wnpa-sec-2013-24: GTPv2 dissector crash, fixed in 1.8.7
  • wnpa-sec-2013-23: RELOAD dissector infinite loop, fixed in 1.8.7
  • wnpa-sec-2013-22: DTLS dissector crash, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-21: RELOAD dissector infinite loop, fixed in 1.8.6
  • wnpa-sec-2013-20: FCSP dissector infinite loop, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-19: CIMD dissector crash, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-18: ACN dissector divide by zero, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-17: AMPQ dissector infinite loop, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-16: Mount dissector crash, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-15: RTPS and RTPS2 dissector crash, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-14: MPLS Echo dissector infinite loop, fixed in 1.8.6
  • wnpa-sec-2013-13: MS-MMS dissector crash, fixed in 1.8.6, 1.6.14
  • wnpa-sec-2013-12: CSN.1 dissector crash, fixed in 1.8.6
  • wnpa-sec-2013-11: HART/IP dissector infinite loop, fixed in 1.8.6
  • wnpa-sec-2013-10: TCP dissector crash, fixed in 1.8.6
  • wnpa-sec-2013-09: NTLMSSP dissector overflow, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-08: Wireshark dissection engine crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-07: DCP-ETSI dissector crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-06: ROHC dissector crash, fixed in 1.8.5
  • wnpa-sec-2013-05: DTLS dissector crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-04: MS-MMC dissector crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-03: DTN dissector crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-02: CLNP dissector crash, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2013-01: Infinite and large loops in several dissectors, fixed in 1.8.5, 1.6.13
  • wnpa-sec-2012-40: Wireshark ICMPv6 dissector infinite loop, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-39: Wireshark 3GPP2 A11 dissector infinite loop, fixed in 1.8.4
  • wnpa-sec-2012-38: Wireshark RTCP dissector inifinte loop, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-37: Wireshark WTP dissector infinite loop, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-36: Wireshark iSCSI dissector infinite loop, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-35: Wireshark ISAKMP dissector crash, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-34: Wireshark EIGRP dissector infinite loop, fixed in 1.8.4
  • wnpa-sec-2012-33: Wireshark SCTP dissector infinite loop, fixed in 1.8.4
  • wnpa-sec-2012-32: Wireshark sFlow dissector infinite loop, fixed in 1.8.4
  • wnpa-sec-2012-31: Wireshark USB dissector infinite loop, fixed in 1.8.4, 1.6.12
  • wnpa-sec-2012-30: Wireshark pcap-ng host name disclosure, fixed in 1.8.4
  • wnpa-sec-2012-29: Wireshark LDP dissector buffer overflow, fixed in 1.8.3
  • wnpa-sec-2012-28: Wireshark DRDA dissector infinite loop, fixed in 1.8.3, 1.6.11
  • wnpa-sec-2012-27: Wireshark PPP dissector crash, fixed in 1.8.3
  • wnpa-sec-2012-26: Wireshark HSRP dissector infinite loop, fixed in 1.8.3
  • wnpa-sec-2012-25: Wireshark Ixia IxVeriWave file parser buffer overflow, fixed in 1.8.2
  • wnpa-sec-2012-24: Wireshark pcap-ng file parser zero division, fixed in 1.8.2
  • wnpa-sec-2012-23: Wireshark CTDB dissector large loop, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-22: Wireshark EtherCAT Mailbox dissector abort, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-21: Wireshark STUN dissector crash, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-20: Wireshark CIP dissector memory exhaustion, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-19: Wireshark GSM RLC MAC dissector buffer overflow, fixed in 1.8.2, 1.6.10
  • wnpa-sec-2012-18: Wireshark RTPS2 dissector buffer overflow, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-17: Wireshark AFP dissector large loop, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-16: Wireshark ERF dissector flaws, fixed in 1.8.2
  • wnpa-sec-2012-15: Wireshark XTP dissector large loop, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-14: Wireshark MongoDB large loop, fixed in 1.8.2
  • wnpa-sec-2012-13: Wireshark DCP ETSI zero division, fixed in 1.8.2, 1.6.10, 1.4.15
  • wnpa-sec-2012-12: Large loop in the NFS dissector, fixed in 1.8.1, 1.6.9, 1.4.14
  • wnpa-sec-2012-11: PPP dissector crash, fixed in 1.8.1, 1.6.9, 1.4.14
  • wnpa-sec-2012-10: Wireshark memory alignment flaw, fixed in 1.4.13, 1.6.8
  • wnpa-sec-2012-09: Wireshark DIAMETER memory allocation flaw, fixed in 1.4.13, 1.6.8
  • wnpa-sec-2012-08: Infinite and large loops in many dissectors, fixed in 1.4.13, 1.6.8
  • wnpa-sec-2012-07: Wireshark MP2T memory allocation flaw, fixed in 1.4.12, 1.6.6
  • wnpa-sec-2012-06: Wireshark pcap and pcap-ng file format crash, fixed in 1.4.12, 1.6.6
  • wnpa-sec-2012-05: Wireshark 802.11 infinite loop, fixed in 1.6.6
  • wnpa-sec-2012-04: Wireshark ANSI A dissector crash, fixed in 1.4.12, 1.6.6
  • wnpa-sec-2012-03: Wireshark RLC dissector buffer overflow, fixed in 1.4.11, 1.6.5
  • wnpa-sec-2012-02: Wireshark NULL pointer vulnerabilities, fixed in 1.4.11, 1.6.5
  • wnpa-sec-2012-01: Multiple Wireshark file parser vulnerabilities, fixed in 1.4.11, 1.6.5
  • wnpa-sec-2011-19: Wireshark ERF file parser vulnerability, fixed in 1.6.3
  • wnpa-sec-2011-18: Wireshark Infiniband dissector vulnerability, fixed in 1.6.3
  • wnpa-sec-2011-17: Wireshark CSN.1 dissector vulnerability, fixed in 1.6.3
  • wnpa-sec-2011-16: Wireshark CSN.1 dissector vulnerability, fixed in 1.6.2
  • wnpa-sec-2011-15: Wireshark Lua script execution vulnerability, fixed in 1.6.2, 1.4.9
  • wnpa-sec-2011-14: Wireshark buffer exception handling vulnerability, fixed in 1.6.2
  • wnpa-sec-2011-13: Wireshark IKE dissector vulnerability, fixed in 1.6.2, 1.4.9
  • wnpa-sec-2011-12: Wireshark OpenSafety dissector vulnerability, fixed in 1.6.2
  • wnpa-sec-2011-11: Lucent/Ascend file parser and ANSI MAP vulnerabilities, fixed in 1.6.1
  • wnpa-sec-2011-10: Lucent/Ascend file parser and ANSI MAP vulnerabilities, fixed in 1.4.8
  • wnpa-sec-2011-09: Lucent/Ascend file parser vulnerability, fixed in 1.2.18
  • wnpa-sec-2011-08: Multiple vulnerabilities, fixed in 1.4.7
  • wnpa-sec-2011-07: Multiple vulnerabilities, fixed in 1.2.17
  • wnpa-sec-2011-06: DECT, NFS, and X.509if vulnerabilities, fixed in 1.4.5
  • wnpa-sec-2011-05: X.509if vulnerability, fixed in 1.2.16
  • wnpa-sec-2011-04: MAC-LTE, ENTTEC, and ASN.1 BER vulnerabilities, fixed in 1.4.4
  • wnpa-sec-2011-03: Multiple vulnerabilities, fixed in 1.2.15
  • wnpa-sec-2011-02: MAC-LTE, ENTTEC, and ASN.1 BER vulnerabilities, fixed in 1.4.3
  • wnpa-sec-2011-01: MAC-LTE and ENTTEC vulnerabilities, fixed in 1.2.14
  • wnpa-sec-2010-14: LDSS and ZigBee ZCL vulnerabilities, fixed in 1.4.2
  • wnpa-sec-2010-13: LDSS vulnerability, fixed in 1.2.13
  • wnpa-sec-2010-12: ASN.1 BER vulnerability, fixed in 1.4.1
  • wnpa-sec-2010-11: Vulnerabilities, fixed in 1.2.12
  • wnpa-sec-2010-10: DLL hijacking vulnerability, fixed in 1.2.11
  • wnpa-sec-2010-09: DLL hijacking vulnerability, fixed in 1.0.16
  • wnpa-sec-2010-08: Multiple vulnerabilities, fixed in 1.2.10
  • wnpa-sec-2010-07: Vulnerabilities, fixed in 1.0.15
  • wnpa-sec-2010-06: Multiple vulnerabilities, fixed in 1.2.9
  • wnpa-sec-2010-05: Multiple vulnerabilities, fixed in 1.0.14
  • wnpa-sec-2010-04: DOCSIS vulnerabilities, fixed in 1.2.8
  • wnpa-sec-2010-03: DOCSIS vulnerabilities, fixed in 1.0.13
  • wnpa-sec-2010-02: LWRES vulnerability, fixed in 1.2.6
  • wnpa-sec-2010-01: Multiple vulnerabilities, fixed in 1.0.11
  • wnpa-sec-2009-09: Multiple vulnerabilities, fixed in 1.2.5
  • wnpa-sec-2009-08: Multiple vulnerabilities, fixed in 1.0.10
  • wnpa-sec-2009-07: Multiple vulnerabilities, fixed in 1.2.3
  • wnpa-sec-2009-06: Multiple vulnerabilities, fixed in 1.2.2
  • wnpa-sec-2009-05: Multiple vulnerabilities, fixed in 1.0.9
  • wnpa-sec-2009-04: Multiple vulnerabilities, fixed in 1.2.1
  • wnpa-sec-2009-03: PCNFSD vulnerability, fixed in 1.0.8
  • wnpa-sec-2009-02: Multiple problems, fixed in 1.0.7
  • wnpa-sec-2009-01: Multiple problems, fixed in 1.0.6
  • wnpa-sec-2008-07: Multiple problems, fixed in 1.0.5
  • wnpa-sec-2008-06: Multiple problems, fixed in 1.0.4
  • wnpa-sec-2008-05: Multiple problems, fixed in 1.0.3
  • wnpa-sec-2008-04: Multiple problems, fixed in 1.0.2
  • wnpa-sec-2008-03: Multiple problems, fixed in 1.0.1
  • wnpa-sec-2008-02: Multiple problems, fixed in 1.0.0
  • wnpa-sec-2008-01: Multiple problems, fixed in 0.99.8
  • wnpa-sec-2007-03: Multiple problems, fixed in 0.99.7
  • wnpa-sec-2007-02: Multiple problems, fixed in 0.99.6
  • wnpa-sec-2007-01: Multiple problems, fixed in 0.99.5
  • wnpa-sec-2006-03: Multiple problems, fixed in 0.99.4
  • wnpa-sec-2006-02: Multiple problems, fixed in 0.99.3
  • wnpa-sec-2006-01: Multiple problems, fixed in 0.99.2

Reporting Security Problems

If you've found a security problem with Wireshark we want to hear about it. You can let us know about security-related issues via the following channels:

  • Email: security[AT]wireshark.org. In cases where confidentiality is a concern, you can use our GPG key (id 0x21F2949A).
  • Web: Our bug tracking system. Bugs can be marked "private" if needed.

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation