Sunday, May 18, 2025
HomeCVE/vulnerabilityWireshark 3.0.7 Released - Fixes for Security Vulnerabilities & Update for BGP,...

Wireshark 3.0.7 Released – Fixes for Security Vulnerabilities & Update for BGP, IEEE 802.11, TLS Protocols

Published on

SIEM as a Service

Follow Us on Google News

Wireshark 3.0.7 released with a number of security updates and fixed several other bugs that reside in the Wireshark components.

Wireshark also updated Protocol Support for various protocols such as BGP, HomePlug AV, IEEE 802.11, and TLS.

Wireshark is known as the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development, and education.

- Advertisement - Google News

It is used by network administrators to troubleshoot network and by the security, analyst to examine the packets. It is a widely used tool in organizations.

Wireshark 3.0.7 fixed the vulnerability {CVE-2019-19553)) that resides in the CMS dissector that affected the Wireshark version 3.0.0 to 3.0.6, 2.6.0 to 2.6.12.

“It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.”

Other Fixed Bugs in Wireshark 3.0.7

  • ws_pipe_wait_for_pipe() can wait on closed handles. Bug 15696.
  • Support for 11ax in PEEKREMOTE. Bug 15740.
  • The temporary file …​ could not be opened: Invalid argument. Bug 15751.
  • Reassembling of the two TLS records is not working correctly. Bug 16109.
  • Display Filter Area: Dropdown Missing pkt_comment and tcp.options.sack_perm (likely others). Bug 16130.
  • Display Filter autocompletion should be disabled. Bug 16132.
  • BGP Linkstate IP Reachability information is incorrect. Bug 16144.
  • NGAP: ExpectedUEActivityBehaviour decode error. Bug 16145.
  • HomePlug AV dissector: MMTYPE and FMI fields are dissected incorrectly. Bug 16158.
  • JPEG files cannot be saved on Windows with french language. Bug 16165.
  • X11 –display interpreted as –display-filter which maps to -Y option. Bug 16167.
  • “Create new file automatically after” not working with extcap. Bug 16178.
  • Encrypted TLS alerts sometimes listed as decrypted. Bug 16180.
  • The “Remove Wireshark from the system path” package has “Add Wireshark to the system PATH” as its title. Bug 16200.
  • tshark -T ek -x causes get_field_data: code should not be reached. Bug 16218.
  • Crash on Go → Next/Previous Packet in Conversation when no packet is selected. Bug 16228.

The new version of Wireshark can be downloaded from here.

Training Course: Master in Wireshark Network Analysis – Hands-on course provides a complete network analysis Training using Wireshark.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

VMware ESXi, Firefox, Red Hat Linux & SharePoint Hacked – Pwn2Own Day 2

Security researchers demonstrated their prowess on the second day of Pwn2Own Berlin 2025, discovering...

Critical WordPress Plugin Flaw Puts Over 10,000 Sites of Cyberattack

A serious security flaw affecting the Eventin plugin, a popular event management solution for...

Sophisticated NPM Attack Leverages Google Calendar2 for Advanced Communication

A startling discovery in the npm ecosystem has revealed a highly sophisticated malware campaign...

New Ransomware Attack Targets Elon Musk Supporters Using PowerShell to Deploy Payloads

A newly identified ransomware campaign has emerged, seemingly targeting supporters of Elon Musk through...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Xerox Launches April 2025 Security Patch for FreeFlow Print Server v2

Xerox has launched its April 2025 Security Patch Update for the FreeFlow Print Server...

PoC Code Published for Linux nftables Security Vulnerability

Security researchers have published proof-of-concept (PoC) exploit code for CVE-2024-26809, a high-severity double-free vulnerability in...

Cisco IOS XE Vulnerability Allows Attackers to Gain Elevated Privileges

Cisco has issued an urgent security advisory (ID: cisco-sa-iosxe-privesc-su7scvdp) following the discovery of multiple...