What is Wireshark?
Wireshark is the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development and education.
The following bugs have been fixed:
TShark PDML output embeds "proto" elements within other "proto" elements Issue 10588.
Filter expressions comparing against single-octet hex strings where the hex digit string equals a protocol name don’t work Issue 12810.
AMQP 0.9: dissector fails to handle Content-Body frame split across TCP packets Issue 14217.
IEEE 802.15.4: Missing check on "PAN ID Present" bit of the Multipurpose Frame Control field Issue 17496.
somecharacter in filename when exporting SMB objects. Issue 17530.
tshark -z credentials: assertion failed: (allocator→in_scope) Issue 17576.
IS-IS Extended IP Reachability Prefix-SID not decoded properly Issue 17610.
Error when reloading lua plugins with a capture file loaded via a custom lua file handler Issue 17615.
Absolute time UTC field filters are constructed incorrectly, don’t match the packet Issue 17617.
GUI freezes when clicking on large (non-capture) file in File chooser Issue 17620.
Crash after selecting a different profile while capturing Issue 17622.
BT-DHT reports malformed packets that are actually uTP on same connection Issue 17626.
New and Updated Features
New Protocol Support
There are no new protocols in this release.
Updated Protocol Support
AMQP, Aruba IAP, BGP, BT-DHT, CoAP, DCERPC SPOOLSS, Diameter, EPL, GSM A-bis OML, GSM A-I/F COMMON, GSM SIM, IEEE 1905.1a, IEEE 802.15.4, IMAP, InfiniBand, ISIS LSP, ISObus VT, JPEG, MP2T, NORDIC_BLE, QUIC, RTCP, SDP, SMB, TWAMP-Control, USB HID, and VSS Monitoring
New and Updated Capture File Support
CAM Inspector, Ixia IxVeriWave, pcapng, and USBDump
Wireshark source code and installation packages are available from https://www.wireshark.org/download.html.
Most Linux and Unix vendors supply their own Wireshark packages. You can usually install or upgrade Wireshark using the package management system specific to that platform. A list of third-party packages can be found on the download page on the Wireshark web site.
Wireshark and TShark look in several different locations for preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations vary from platform to platform. You can use About → Folders to find the default locations on your system.
The User’s Guide, manual pages and various other documentation can be found at https://www.wireshark.org/docs/
Community support is available on Wireshark’s Q&A site and on the wireshark-users mailing list. Subscription information and archives for all of Wireshark’s mailing lists can be found on the web site.
Issues and feature requests can be reported on the issue tracker.
Frequently Asked Questions
A complete FAQ is available on the Wireshark web site.