wireshark-devel-1.4.4-0.5.1<>,Mʻ/=„Zwy﬘?_ Rd%K1=2TVǿfz Ӝ'vt*n}I<{&I0'Ubo\GxiwY 2]xO@qf|D =uQD"n:żL7񂒹߁yI[HnVJ*EU]R4+Y$BDr x| \2Q"" 3!,@Mٓጱ7TK]6lr'Ѓyv4jDpMza!I >8?d  9 6PV\;H; ; 4;  ;  ;  ; |;;; ,(89X:BFG;H;I;XYZ[\;];^bzcdienfsluzCwireshark-devel1.4.40.5.1A Network Traffic AnalyserWireshark is a free network protocol analyzer for Unix and Windows. It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, viewing summary and detail information for each packet. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session.MʎGbuild33 UoopenSUSE 11.4openSUSEGPLv2+http://bugs.opensuse.orgProductivity/Networking/Diagnostichttp://www.wireshark.org/linuxi586 7V){ 2 ./!L% % 4D!"Bl%+$8Y#=2 N \ vod&?AW-o" l$k A큤A큤Mʎ#Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&Mʎ&MʎMʎ Mʎ MʎDMm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mm&Mʎ%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.so.0.0.1libwiretap.so.0.0.1libwsutil.so.0.0.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootwireshark-1.4.4-0.5.1.src.rpmethereal-develwireshark-develwireshark-devel(x86-32)   @ wiresharkglibc-develglib2-develrpmlib(VersionedDependencies)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)/bin/shrpmlib(PayloadIsLzma)1.4.43.0.3-14.0-13.0.4-14.4.6-14.8.0MMv@MZjLs@Lډ@L@LuLuL@K;@K]Kf@Kf@Kf@K y@J@J@Jyt@J]J8J8JJIo@I@cyliu@novell.comcyliu@novell.comprusnak@opensuse.orgprusnak@opensuse.orgprusnak@opensuse.orgdimstar@opensuse.orgprusnak@opensuse.orgprusnak@opensuse.orgtserong@novell.comprusnak@suse.czsharms@ubuntu.comprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czcmorve69@yahoo.esprusnak@suse.czcseader@novell.comcseader@novell.com- security fixes [#bnc 688109] * CVE-2011-1590: Use of un-initialised variables * CVE-2011-1592: Crash in NFS dissector on Windows * CVE-2011-1591: Buffer overflow in DECT dissector- updated to 1.4.4 * security fixes o The DOCSIS dissector could crash (CVE-2010-1455, bnc#603251) o Crash when receiving a malformed SNMP packet (CVE-2010-3445, bnc#643078) o Multiple buffer overflow and dereference vulnerabilities (bnc#655121) o LDSS dissector overflow (CVE-2010-4300, bnc#655448) o ZCL dissector infinite loop (CVE-2010-4301, bnc#655448) o Buffer overflows in ENTTEC DMX Data RLE and others (CVE-2010-4538, bnc#662029) o Freeing uninitialized pointer (CVE-2011-0538, bnc#669908) o dct3trace buffer overflow (CVE-2011-0713, bnc#672916) o Off-by-one in dissect_6lowpan_iphc (CVE-2011-1138, bnc#678567) o Crash via corrupted pcap file (CVE-2011-1139, bnc#678568) o Crash via SMB or CLDAP packet (CVE-2011-1140, bnc#678569) o Crash in NTLMSSP via crafted pcap file (CVE-2011-1143, bnc#678571) o Wireshark pcap buffer overflow (CVE-2011-0024, bnc#683335) * Updated Protocol Support ANSI MAP, BitTorrent, DCM, DHCPv6, DTAP, DTPT, E.212, GSM Management, GTP, HIP, IEEE 802.15.4, IPP, LDAP, LLDP, Netflow, NTLMSSP, P_Mul, Quake, Skinny, SMB, SNMP, ULP * New and Updated Capture File Support LANalyzer, Nokia DCT3, Pcap-ng- updated to 1.4.3 - security fixes: o MAC-LTE dissector could overflow a buffer o ENTTEC dissector could overflow a buffer o ASN.1 BER dissector could assert and make Wireshark exit prematurely - bug fixes: o AMQP failed assertion o Reassemble.c leaks memory for GLIB > 2.8 o Fuzz testing reports possible dissector bug: TCP o Wrong length calculation in new_octet_aligned_subset_bits() o Function dissect_per_bit_string_display might read more bytes than available o Wireshark crashes with Copy -> Description on date/time fields o DHCPv6 OPTION_CLIENT_FQDN parse error o Information element Error for supported channels o Assert when using ASN.1 dissector with loading a 'type table' o Bug with RWH parsing in Infiniband dissector o Help->About Wireshark mis-reports OS o Delegated-IPv6-Prefix(123) is shown incorrect as X-Ascend-Call-Attempt-Limit(123) o "tshark -r file -T fields" is truncating exported data o gsm_a_dtap: incorrect "Extraneous Data" when decoding Packet Flow Identifier o Improper decode of TLS 1.2 packet containing both CertificateRequest and ServerHelloDone messages o LTE-PDCP UL and DL problem o CIGI 3.2/3.3 support broken o Prepare Filter in RTP Streams dialog does not work correctly. o Wrong decode at ethernet OAM Y.1731 ETH-CC o WPS: RF bands decryption o Incorrect LTP SDNV value handling o LTP bug found by randpkt o Buffer overflow in SNMP EngineID preferences - updated protocol support: AMQP, ASN.1 BER, ASN.1 PER, CFM, CIGI, DHCPv6, Diameter, ENTTEC, GSM A GM, IEEE 802.11, InfiniBand, LTE-PDCP, LTP, MAC-LTE, MP2T, RADIUS, SAMR, SCCP, SIP, SNMP, TCP, TLS, TN3270, UNISTIM, WPS - new and updated capture file support: Endace ERF, Microsoft Network Monitor, VMS TCPtrace- updated to 1.4.2 - security fixes: * Nephi Johnson of BreakingPoint discovered that the LDSS dissector could overflow a buffer. (Bug 5318) * The ZigBee ZCL dissector could go into an infinite loop. (Bug 5303) - bug fixes: * File-Open Display Filter is overwritten by Save-As Filename. (Bug 3894) * Wireshark crashes with "Gtk-ERROR **: Byte index 6 is off the end of the line" if click on last PDU. (Bug 5285) * GTK-ERROR can occur in packets when there are multiple Netbios/SMB headers in a single frame. (Bug 5289) * "Tshark -G values" crashes on Windows. (Bug 5296) * PROFINET I&M0FilterData packet not fully decoded. (Bug 5299) * PROFINET MRP linkup/linkdown decoding incorrect. (Bug 5300) * [lua] Dumper:close() will cause a segfault due later GC of the Dumper. (Bug 5320) * Network Instruments' trace files sometimes cannot be read with an error message of "Observer: bad record: Invalid magic number". (Bug 5330) * IO Graph Time of Day times incorrect for filtered data. (Bug 5340) * Wireshark tools do not detect and read some ERF files correctly. (Bug 5344) * "editcap -h" sends some lines to stderr and others to stdout. (Bug 5353) * IP Timestamp Option: "flag=3" variant (prespecified) not displayed correctly. (Bug 5357) * AgentX PDU Header 'hex field highlighting' incorrectly spans extra bytes. (Bug 5364) * AgentX dissector cannot handle null OID in Open-PDU. (Bug 5368) * Crash with "Gtk-ERROR **: Byte index 6 is off the end of the line". (Bug 5374) * ANCP Portmanagment TLV wrong decoded. (Bug 5388) * Crash during startup because of Python SyntaxError in wspy_libws.py. (Bug 5389) - Updated Protocol Support * AgentX, ANCP, DIAMETER, HTTP, IP, LDSS, MIME, NBNS, PROFINET, SIP, TCP, Telnet, ZigBee - New and Updated Capture File Support * Endace ERF, Network Instruments Observer - fix lua error at startup (enable_lua.patch) [bnc#650434] - apply nfsv4 patch from Fedora (nfsv4-opts.patch)- updated to 1.4.1 * security fixes: o stack overflow in ASN.1 BER dissector * bug fixes: o Incorrect behavior using sorting in the packet list o Cooked-capture dissector should omit the source address field if empty o MySQL dissector doesn't dissect MySQL stream o Wireshark crashes if active display filter macro is renamed o Incorrect dissection of MAP V2 PRN_ACK o TCP bytes_in_flight becomes inflated with lost packets o GTP header is exported in PDML with an incorrect size o Packet list hidden columns will not be parsed correctly from preferences file o Wireshark does not display the t.38 graph o Wireshark don't show mgcp calls in "Telephony → VoIP calls" o Wireshark 1.4.0 & VoIP calls "Prepare Filter" problem o GTPv2: IMSI is decoded improperly o EPS Quality of Service IE decoding is wrong o Wireshark mistakenly writes "not all data available" for IPv4 checksum o GSM: Cell Channel Description, range 1024 format o Wrong SDP interpretation on VoIP call flow chart o The CLDAP attribute value on a CLDAP reply is no longer being decoded o [NAS EPS] Traffic Flow Template IE dissection bugs o [NAS EPS] Use Request Type IE defined in 3GPP 24.008 o NTLMSSP_AUTH domain and username truncated to first letter with IE8/Windows7 o IPv6 RH0: dest addr is to be used i.s.o. last RH address when 0 segments remain o EIGRP dissection error in Flags field in external route TLVs. o MRP packet is not correctly parsed in PROFINET multiple write record request o MySQL Enhancement: support of Show Fields and bug fix o [NAS EPS] Fix TFT decoding when having several Packet Filters defined o Crash if using ssl.debug.file with no password for ssl.keys_list * updated protocol support ASN.1 BER, ASN.1 PER, EIGRP, GSM A RR, GSM Management, GSM MAP, GTP, GTPv2, ICMPv6, Interlink, IPv4, IPv6, IPX, LDAP, LLC, MySQL, NAS EPS, NTLMSSP, PN-IO, PPP, RPC, SDP, SLL, SSL, TCP- Update to version 1.4.0: + The packet list internals have been rewritten and are now more efficient. + Columns are easier to use. You can add a protocol field as a column by right-clicking on its packet detail item, and you can adjust some column preferences by right-clicking the column header. + Preliminary Python scripting support has been added. + Many memory leaks have been fixed. + Packets can now be ignored (excluded from dissection), similar to the way they can be marked. + Manual IP address resolution is now supported. + Columns with seconds can now be displayed as hours, minutes and seconds. + You can now set the capture buffer size on UNIX and Linux if you have libpcap 1.0.0 or greater. + TShark no longer needs elevated privileges on UNIX or Linux to list interfaces. Only dumpcap requires privileges now. + Wireshark and TShark can enable 802.11 monitor mode directly if you have libpcap 1.0.0 or greater. + You can play RTP streams directly from the RTP Analysis window. + Capinfos and editcap now respectively support time order checking and forcing. + Wireshark now has a "jump to timestamp" command-line option. + You can open JPEG files directly in Wireshark. + Many new and updated protocols. + See NEWS for a full list of changes. - Drop wireshark-1.2.0-asneeded.patch, fixed upstream. - Rebase wireshark-corosync-packet-dissector.patch.- updated to 1.2.10 [bnc#630599] * Security fixes: o The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4867) o The GSM A RR dissector could crash. (Bug 4897) o Due to a regression the ASN.1 BER dissector could overrun the stack. o The IPMI dissector could go into an infinite loop. o CVE-2010-2993 * Bug fixes: o Wireshark crashes after configuring new Information column. (Bug 4854) o Crash triggered when changing display filter from right-mouse pop-up menu via packet-list. (Bug 4860) o Wireshark crash selecting Inter-Asterisk exchange v2 packet data. (Bug 4868) o zlib-1.2.5 cause tshark to stop live capture. (Bug 4916) o Crash when adding SNMP users. (Bug 4926) o Wireshark via ssh -X on ipv6 link-local address fails to allow capture. (Bug 4945) o OMAPI dissector fails to parse combined initialization messages. (Bug 4982) o QUERY_FS_INFO for Macintosh level 0x301 - MacSupportFlags decodes wrong. (Bug 4993) o SCSI dissector misidentifies ATA PASSTHROUGH command as ACCESS CONTROL IN. (Bug 5037) o Wrong decoding of GTP Prime (GTP') packets. (Bug 5055) * Updated Protocol Support ASN.1 BER, GSM A RR, GTP, IAX2, IPMI, OMAPI, PRES, SCSI, SMB, UNISTIM- updated to 1.2.9 [bnc#613487] * Security fixes: o The SMB dissector could dereference a NULL pointer. (Bug 4734) o J. Oquendo discovered that the ASN.1 BER dissector could overrun the stack. o The SMB PIPE dissector could dereference a NULL pointer on some platforms. o The SigComp Universal Decompressor Virtual Machine could go into an infinite loop. (Bug 4826) o The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4837) * Bug fixes: o Cannot open file with File -> Open. (Bug 1791) o Application crash when changing real-time option. (Bug 4035) o Crash in filter autocompletion. (Bug 4306) o The XML dissector doesn't allow dots (".") in tags. (Bug 4405) o Live capture stops when using zlib 1.2.5. (Bug 4708) o Want to be able to apply decode as to Data Portion of Lan Trace. (Bug 4721) o SABP short pdu (packet_per.c). (Bug 4743) o Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752) o Check HTTP Content-Length parsing for overflow. (Bug 4758) o Wrong variable used for proto_tree_add_text() in ptp dissector. (Bug 4773) o Crash when close window frame of gtk file chooser. (Bug 4778) o text2pcap expects \n delimited text (instead of \r\n) on win32. (Bug 4780) o Wrong decoding for BGP ORF. (Bug 4782) o Crash when Ctrl-Backspacing the display filter. (Bug 4797) o Acker AFI field incorrect size in PGM dissector. (Bug 4798) o Fedora 13: wireshark fails to build (linking problem). (Bug 4815) o The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles. (Bug 4839) o AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt). (Bug 4838) * Updated Protocol Support ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp, SMB, TCAP, XML, * Updated Capture File Support ERF, PacketLogger.- Added corosync packet dissector (patch 4724 from https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3232, minus "private key" setting, which doesn't work with nice random binary keys in /etc/corosync/authkey)- updated to 1.2.8 * Security Fixes: o The DOCSIS dissector could crash. (Bug 4644), (bug 4646) * Bug Fixes: o HTTP parser limits with Content-Length. (Bug 1958) o MATE dissector bug with GOGs. (Bug 3010) o Changing fonts and deleting system time from preferences, results in wireshark crash. (Bug 3387) o ERF file starting with record with timestamp=0,1 or 2 not recognized as ERF file. (Bug 4503) o The SSL dissector can not correctly resemple SSL records when the record header is spit between packets. (Bug 4535) o TCP reassembly can call subdissector with incorrect TCP sequence number. (Bug 4624) o PTP dissector displays big correction field values wrong. (Bug 4635) o MSF is at Anthorn, not Rugby. (Bug 4678) o ProtoField __tostring() description is missing in Wireshark's Lua API Reference Manual. (Bug 4695) o EVRC packet bundling not handled correctly. (Bug 4718) o Completely unresponsive when run very first time by root user. (Bug 4308) * Updated Protocol Support DOCSIS, HTTP, SSL * Updated Capture File Support ERF, PacketLogger.- updated to new stable upstream version 1.2.7 * Bug Fixes: o SNMPv3 Engine ID registration. (Bug 2426) o Open file dialog always displayed when clicking anywhere on Wireshark. (Bug 2478) o tshark reports wrong number of bytes on big dumpfiles with -z io,stat. (Bug 3205) o Negative INTEGER number displayed as positive number in SNMP dissector. (Bug 3230) o Add support for FT_BOOLEAN fields to wslua FieldInfo. (Bug 4049) o Wireshark crashes w/ GLib error when trying to play RTP stream. (Bug 4119) o Windows 2000 support has been restored. (Bug 4176) o Wrong dissection on be_cell_id_list for bssmap. (Bug 4437) o I/O Graph dropdown boxes not working correctly. (Bug 4487) o Runtime Error when right-clicking field and selecting "Filter Field Reference". (Bug 4522) o In GSM SMS PDU TPVPF showing wrong. (Bug 4524) o Profinet: May be wrong defined byte meaning. (Bug 4525) o GLib-CRITICAL ** Message. (Bug 4547) o Certain EDP display filters trigger Wireshark/tshark runtime error. (Bug 4563) o Some NCP frames trigger "Dissector bug, protocol NCP". (Bug 4565) o The encapsulation abbreviation "bluetooth-h4" is ambiguous. (Bug 4613) * Updated Protocol Support: o BSSMAP, DMP, GSM SMS, LDSS, NCP, PN/IO, PPP, SIP, SNMP- update desktop file to use xdg-su [bnc#540627]- updated to 1.2.6 * Security Fixes: o Babi discovered several buffer overflows in the LWRES * Bug Fixes: o Wireshark could crash while decrypting Kerberos data. o Address display filters hang Wireshark. (Bug 658) o PSML - structure context node missing. (Bug 1564) o Wireshark doesn't dynamically update the packet list. (Bug 1605) o LUA: There's no tvb_get_stringz() equivalent. (Bug 2244) o tvb_new_real_data is prone to memory leak. (Bug 3917) o Malformed OPC UA traffic makes Wireshark "freeze". (Bug 3986) o Analyze->Expert... doesn't show IP "Bad Checksum" errors. (Bug 4177) o Wireshark can't decrypt WPA(2)-PSK when passphrase is 63 bytes. (Bug 4183) o RTP stream analysis: Wrong jitter values after clicking the refresh button. (Bug 4340) o Wireshark decodes bootp option 2 incorrectly. (Bug 4342) o Deleting SMI modules causes Wireshark to crash. (Bug 4354) o Wireshark decodes kerberos AS-REQ PADATA incorrect. (Bug 4363) o PDML output from TShark includes invalid characters. (Bug 4402) o Empty GPRS LLC S frames cause truncated data exception. (Bug 4417) * Updated Protocol Support BJNP, BOOTP/DHCP, DHCPv6, FIP, GPRS LLC, IEEE 802.11, IP, Kerberos, OPCUA, SCTP, SSL, ZRTP- updated to 1.2.5 * Security Fixes: o The Daintree SNA file parser could overflow a buffer. (Bug 4294) o The SMB and SMB2 dissectors could crash. (Bug 4301) * Bug Fixes: o Wireshark does not graph rtp streams. (Bug 3801) o Wireshark showing extraneous data in a TCP stream. (Bug 3955) o Wrong decoding of gtp.target identification. (Bug 3974) o TTE dissector bug. (Bug 4247) o Upper case in Lua pref symbol causes Wireshark to crash. (Bug 4255) o Incorrect display of stream data using "Follow tcp stream" option. (Bug 4288) o Custom RADIUS dictionary can cause a crash. (Bug 4316) * Updated Protocol Support DAP, eDonkey, GTP, IPMI, MIP, RADIUS, RANAP, SMB, SMB2, TCP, TTE, VNC, X.509sat * Updated Capture File Support Daintree SNA- updated to 1.2.4 * Bug Fixes - Can't save RTP stream in both directions. (Bug 4120) * Updated Protocol Support - DCERPC, IPFIX/Netflow, IPv4, NAS EPS, RTCP, TIPC- updated to 1.2.3 * Security fixes: - The Paltalk dissector could crash on alignment-sensitive processors. - The DCERPC/NT dissector could crash. - The SMB dissector could crash. * Bug fixes: - Wireshark memory leak with each file open and/or display filter change. - DHCP Dissector displays negative lease time. - Invalid advertised window line on tcptrace style graph. - SMB get_dfs_referral referral entry is not dissected correctly. - Error dissecting eMule sourceOBFU message. - Typos in Diameter XML files. - RSL dissector for MS Power IE is broken. - FIP dissector throws assertion. - TCAP problem with indefinite length 'components' SEQ OF. - GSM MAP: an-APDU not decoded. - Add "Drag and Drop entries..." message on Columns preferences page. - Editcap -t and -w option parses fractional digits incorrectly. * Updated Protocol Support - DCERPC NT, DHCP, Diameter, E.212, eDonkey, FIP, IPsec, MGCP, NCP, Paltalk, RADIUS, RSL, SBus, SMB, SNMP, SSL, TCP, Teamspeak2, WPS - updated to 1.2.2 * Security fixes: - The GSM A RR dissector could crash. (Bug 3893) - The OpcUa dissector could use excessive CPU and memory. (Bug 3986) - The TLS dissector could crash on some platforms. (Bug 4008) * Bug fixes: - The "Capture->Interfaces" window can't be closed. - tshark-1.0.2 (dumpcap) signal abort core saved. - Memory leak fixes. - Display filter autocompletion doesn't work for some RADIUS and WiMAX ASNCP fields. - Wireshark Portable includes wrong WinPcap installer. - Crash when loading a profile. - The proto,colinfo tap doesn't work if the INFO column isn't being printed. - Flow Graph adds too much unnecessary garbage. - The EAP Diameter dictionary file was missing in the distribution. - Graph analysis window is behind other window. - IKEv2 Cert Request payload dissection error. - DNS NAPTR RR (RFC 3403) replacement MUST be a fully qualified domain-name. - Malformed RTCP Packet error while sending Payload specific RTCP feedback packet (as per RFC 4585). - 802.11n Block Ack packet Bitmap field missing. - Wireshark doesn't decode WBXML/ActiveSync information correctly. - Malformed packet when IPv6 packet has Next Header == 59. - Wireshark could crash while reading an ERF file. - Minor errors in gsm rr dissectors. - WPA Decryption Issues. - GSM A RR sys info dissection problem. - GSM A RR inverts MEAS-VALID values. - PDML output leaks ~300 bytes / packet. - Incorrect station identifier parsing in Kingfisher dissector. - DHCPv6, Vendor-Specific Informantion, SubOption"Option Request" parser incorrect. - Wireshark could leak memory while analyzing SSL. - Wireshark could crash while updating menu items after reading a file in some cases. * Updated Protocol Support - DCERPC, DHCPv6, DNS, E.212, GSM A RR, GTPv2, H.248, IEEE 802.11, IPMI, ISAKMP/IKE, ISUP, Kingfisher, LDAP, OpcUA, RTCP, SCTP, SIP, SSL, TCP, WBXML, ZRTP * Updated Capture File Support - ERF - dropped obsoleted 3 CVE patches (see previous entry)- fix CVE-2009-3241 (CVE-2009-3241.patch) [bnc#541654] - fix CVE-2009-3242 (CVE-2009-3242.patch) [bnc#541659] - fix CVE-2009-3243 (CVE-2009-3243.patch) [bnc#541655]- updated to 1.2.1 * Bug Fixes - The IPMI dissector could overrun a buffer. - The AFS dissector could crash. - The Infiniband dissector could crash on some platforms. - The Bluetooth L2CAP dissector could crash. - The RADIUS dissector could crash. - The MIOP dissector could crash. - The sFlow dissector could use excessive CPU and memory. - Wireshark could crash while reading a pcap-ng file. - Wireshark could crash while reading a PacketLogger file. - CFLOW decoding is wrong for IPv6 fields (Bug 3328) - Buildbot crash output: fuzz-2009-04-24-2891.pcap (Bug 3438) - packet-dcm, corrupt DICOM export files (Bug 3493) - GeoIP map should use random temporary file name (Bug 3530) - Wireshark crashes when range_string is the data type (Bug 3536) - Pcap-ng breaks VoIP call data (Bug 3539) - ANSI MAP legInformation BER Error (Bug 3541) - Starting Wireshark Portable 1.2.0 gives error message. (Bug 3547) - The title in the TCP sequence graphs is too short. (Bug 3556) - USB Packets in pcap-ng Files Not Dissected Properly (Bug 3560) - 802.11 decryption is broken (Bug 3590) - SMB2 Error Response doesn't decode properly (Bug 3609) - configure.in uses deprecated autoconf test for gnutls detection (Bug 3627) - Radius Malformed Packet error message (Bug 3635) - Wireshark could crash when loading a profile. (Bug 3640) - Analyze->Decode as... menu item becomes unavailable (Bug 3642) - btsnoop: Incorrect error message for not supported datalink type (Bug 3645) - Decode error for network-id in BICC BCU-ID (Bug 3648) - IEC 60870-5-104 dissector decodes nothing (Bug 3650) - radius_register_avp_dissector() can stop RADIUS dissector from working correctly (Bug 3651) - ANSI ISUP Cause indicators with coding standard=ANSI fail to dissect. (Bug 3654) - Wrong field position in PacketCable Multimedia Extended Classifier (Bug 3656) - FF Protocol "FMS Initiate - Version OD Calling" field packet data not unpacked properly (Bug 3694) - hci_h4: Optimize column/field handling (Bug 3703) - BSSLAP Protocol Not Decoded In BSSMAP-LE Messages (Bug 3711) - Description of tshark -t dd missing from tshark.pod (Bug 3723) - Problem in packet-per.c for ASN.1 PER Encoding (Bug 3733) - [SNMP] Crash when dissecting packet (custom MIB) (Bug 3746) * Updated Protocol Support - AFS, ANSI ISUP, ANSI MAP, ASN.1 PER, Bluetooth HCI H4, Bluetooth L2CAP, BSS CFLOW, COPS, Diameter, DICOM, FF-HSE, ICMPv6, IEC-60870-5-104, IEEE 802.11, Infiniband, IPMI, MIOP, RADIUS, RSVP, sFlow, SNMP, SMB2, ZIOP * New Capture File Support - Btsnoop, DCT3, Packetlogger, pcap-ng- fix asneeded.patch (patch Makefile.in files also)- search in /var/lib/GeoIP if user hasn't set any GeoIP folders (geoip.patch)- updated to 1.2.0 Bug Fixes Too many bugs have been fixed since the 1.0 release to list here. Some notable fixes are: o Type-ahead search now works properly. o Several bugs that affected capture from pipes have been fixed. o Many Lua-related bugs have been fixed. o Several memory leaks have been found and fixed. o The "Follow TCP Stream" feature could show two streams at the same time The hex dump view has been narrowed. o WPA and SSL decryption bugs have been fixed. o Readability problems on 256-color displays on Windows have been fixed. New and Updated Features The following features are new (or have been significantly updated) since version 1.0: o Wireshark has a spiffy new start page. o Display filters now autocomplete. o A 64-bit Windows (x64) installer is now provided. o Support for the c-ares resolver library has been added. It has many advantages over ADNS. o Many new protocol dissectors and capture file formats have been added (see below for a complete list). o Macintosh OS X support has been improved. o GeoIP database lookups. o OpenStreetMap + GeoIP integration. o Improved Postscript(R) print output. o The preference handling code is now much smarter about changes. o Support for Pcap-ng, the next-generation capture file format. o Support for process information correlation via IPFIX. o Column widths are now saved. o The last used configuration profile is now saved. o Protocol preferences are changeable from the packet details context menu. o Support for IP packet comparison. o Capinfos now shows the average packet rate. o GTK1 is no longer supported. (Yes, this is a feature.) o Official Windows packages are now built using Microsoft Visual C++ 2008 SP1. New Protocol Support Anything in Anything Protocol, ATM PW, N-to-one Cell Mode, B.A.T.M.A.N. Layer 3 Protocol, BACnet MS/TP, BSS LCS Assistance Protocol, Canon BJNP, CESoPSN basic NxDS0 mode (no RTP support), Charging ASE, Cimetrics MS/TP, DECT Protocol, Digital Private Signalling System No 1 Link Layer, DOCSIS Mac Domain Description, DOCSIS Registration Request Multipart, DOCSIS Registration Response Multipart, DOCSIS Synchronisation Message, E100 Encapsulation, EHS, Enhanced Variable Rate Codec, Ethernet Global Data, Ethernet PW, Exchange 2003 Directory Request For Response, Far End Failure Detection, FCoE Initialization Protocol, GOOSE, GPEF, GPRS Tunneling Protocol V2, GSM A-I/F COMMON, GSM A-I/F GPRS Mobility and Session Management, GSM SACCH, GSM Um Interface, HDLC PW, FR port mode (no CW), HDLC-like framing for PPP, IEC 60870-5-104,Apci, IEC 60870-5-104,Asdu, IEEE 802.15.4 Low-Rate Wireless PAN non-ASK PHY, IEEE C37.118 Synchrophasor Protocol, Intelligent Platform Management Interface (Session Wrapper), Inter-Integrated Circuit, Internal TDM, IPSICTL, ISMACryp Protocol, iWARP Direct Data Placement and Remote Direct Memory Access Protocol, iWARP Marker Protocol data unit Aligned framing, Kontiki Delivery Protocol, LANforge Traffic Generator, Layer 1 Event Messages, Lb-I/F BSSMAP LE, LeCroy VICP, Link Access Procedure, Channel Dm (LAPDm), Local Download Sharing Service, LTE Radio Resource Control (RRC) protocol, MAC-LTE, Memcache Protocol, Mesh Header, MP4V-ES, Nasdaq TotalView-ITCH, Nasdaq-SoupTCP version 2.0, NAT Port Mapping Protocol, Netdump Protocol, Non-Access-Stratum (NAS)PDU, PacketLogger, Paltalk Messenger Protocol, PDCP-LTE, PW Associated Channel Header, PW Ethernet Control Word, PW Frame Relay DLCI Control Word, PW MPLS Control Word (generic/preferred), Real-Time Publish-Subscribe Wire Protocol 2.x, Remote Packet Capture, RLC-LTE, SAToP (no RTP support), SERCOS III V1.1, SIMULCRYPT Protocol, Subnetwork Dependent Convergence Protocol XID, Teamspeak2 Protocol, TTEthernet, TTEthernet Protocol Control Frame, Turbocell Aggregate Data, Turbocell Header, TURN Channel, Unreliable Multicast Inter-ORB Protocol, VCDU, Wave Short Message Protocol(IEEE P1609.3), Wireless Access Station Session Protocol, Wireshark Expert Info, World of Warcraft, Xpress Transport Protocol, ZigBee Application Framework, ZigBee Application Support Layer, ZigBee Device Profile, ZigBee Encapsulation Protocol, ZigBee Network Layer, Zipped Inter-ORB Protocol, ZRTP Updated Protocol Support There are too many updates to list here. New Capture File Support Apple Bluetooth PacketLogger, Daintree's Sensor Network Analyzer, dct3trace, Pcap-NG, TNEF (yes, those silly winmail.dat attachments) - removed obsoleted patches: * help.patch (not needed anymore) * sigpipe-block.patch (not needed anymore)- made it compile with --as-needed- updated to 1.0.8 * bug fixes o The PCNFSD dissector could crash. * the following bugs have been fixed: o Lua integration could crash (Bug 2453) o The SCCP dissector could crash when loading more than one file in a single session. (Bug 3409) o The NDMP dissector could crash if reassembly was enabled. (Bug 3470) * updated protocol support o All ASN.1 protocols, DICOM, NDMP, PCNFSD, RTCP, SCCP, SSL, STANAG 5066- removing --with-ssl and adding --with-gnutls * per Wireshark documentation "The SSL dissector is fully functional and even supports advanced features such as decryption of SSL if the encryption key can be provided and WireShark is compiled against Gnu-TLS (rather than openssl or bsafe)."- updated to 1.0.7 o security fixes * The PROFINET dissector was vulnerable to a format string overflow. (Bug 3382) Versions affected: 0.99.6 to 1.0.6 CVE-2009-1210 * The LDAP dissector could crash on Windows. (Bug 3262) Versions affected: 0.99.2 to 1.0.6 CVE-2009-1267 * The Check Point High-Availability Protocol (CPHAP) dissector could crash. (Bug 3269) Versions affected: 0.9.6 to 1.0.6 CVE-2009-1268 * Wireshark could crash while loading a Tektronix .rf5 file. (Bug 3366) Versions affected: 0.99.6 to 1.0.6 CVE-2009-1269 o bug fixes * Correct use of proto_tree_add_int_format() (Bug 3048) * RTP dynamic payload clock rates incorrectly determined (Bug 3067) * TShark fails to properly close capture files when opening new ones (Bug 3172) * ANSI MAP digits type decode and bitmask corrections (Bug 3233) * Two small patches for ipvs-syncd dissector (Bug 3236) * BGP capability dissection failure (Bug 3247) * ANSI MAP fix for missing MEID/MSC ID number in RegNot (Bug 3255) * BACnet PrivateTransferError shows malformed packet (Bug 3257) * Windows silent installer is not that silent (Bug 3260) * Crash in ASN.1 dissector when using 'type table' (Bug 3271) * 802.11n SM Power save mode value 0x3 label is incorrect (Bug 3276) * 802.11 WME ie displayed incorrectly (Bug 3284) * "Copy as filter" from the packet list has been fixed. o updated protocol support * ACN, ANSI MAP, ASN.1 BACnet, BGP, CPHAP, GSM MAP, IEEE 802.11, IPVS, LDAP, NetFlow/IPFIX, PROFINET, RTP, SNMP, WSPethereal-develbuild33 1305120327zpk################m1.4.41.4.4-0.5.11.4.4-0.5.11.4.4idl2wrswiresharkaddress.hcolor.hcolumn_info.hconfig.hconversation.hcrc16.hcrc32.hdfilter.hdrange.hepan.hexcept.hexceptions.hfilesystem.hframe_data.hftypes.hipv4.hnstime.hpacket-ber.hpacket-giop.hpacket-per.hpacket-rpc.hpacket-tcp.hpacket-tpkt.hpacket.hpacket_info.hpint.hprefs.hproto.hreassemble.hreport_err.hslab.htap.hto_str.htvbuff.hvalue_string.hwtap.hxdlc.hlibwireshark.solibwiretap.solibwsutil.sowireshark-develREADME.binarytreesREADME.captureREADME.designREADME.developerREADME.display_filterREADME.idl2wrsREADME.mallocREADME.packagingREADME.pluginsREADME.pythonREADME.regressionREADME.request_response_trackingREADME.stats_treeREADME.tappingREADME.xml-outputidl2wrs.1.gz/usr/bin//usr/include//usr/include/wireshark//usr/lib//usr/share/doc/packages//usr/share/doc/packages/wireshark-devel//usr/share/man/man1/-fomit-frame-pointer -fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -gobs://build.opensuse.org/openSUSE:11.4:Update:Test/standard/bd1c5a2fed361bcfb891d7be4da0faf4-wiresharkcpiolzma5i586-suse-linuxpN`waP Qាq?] "k%{mt[yC1@H^'_2\U$t 6G ~ >E *ڵd Zy|h$nt~pP1ZG: W: fq=5+Yf*?B'5YG@B!غ"v[t$[q4Jv7O<<[;S_#;p5i.}1Yn}Su%h]ջj/s0><Q ,9k)8YYO wz|<%o( &PF2RVk3aCӔn%F}nc9 +I2w MhCv}X7j4 Y!8qz[{'!L%y+2RRbږ4C^ڑ3O>< L2њ[ԕl |u˓ߔ R [(P2h`qZG xȩW=DsFHf\Y} b gLʜ75sye 8',R{`ZQoCPOkEǡ٭rO1$ r+{eKlZ~ NSYI8ŦuM:Rڲ.j&GuT O[+myKʦM.-:i,E݊@Q`{HŬ'1R†,JM^ UK