Install Wireshark 2.0.4 in Ubuntu 16.04 LTS / 14.04 & LinuxMint

Share it:

Wireshark an open source protocol analyzer software mainly used to monitor the traffic in a network ,recently version 2.0.4 released and easy to install it  via Official PPA.

Wireshark got it's new interface in the version 2.0 series and it is written in QT5.


Changelog in Wireshark 2.0.4

  • Saving pcap capture file with ERF encapsulation creates an invalid pcap file.
  • Questionable calling of Ethernet dissector by encapsulating protocol dissectors.
  • Wireshark 1.12.0 does not dissect HTTP correctly.
  • Don’t copy details of hidden columns.
  • RTP audio player crashes.
  • Crash when saving RTP audio Telephony→RTP→RTP Streams→Analyze→Save→Audio.
  • Edit - preferences - add column field not showing dropdown for choices.
  • Using _ws.expert in a filter can cause a crash.
  • Crash in SCCP dissector UAT (Qt UI only).
  • J1939 frame without data = malformed packet ?
  • The stream number in tshark’s "-z follow,tcp," option is 0-origin rather than 1-origin.
  • IP Header Length display filter should show calculated value.
  • Multiple file radio buttons should be check boxes.
  • Wrong check for getaddrinfo and gethostbyname on Solaris 11.
  • ICMPv6 dissector doesn’t respect actual packet length.
  • Format DIS header timestamp mm:ss.nnnnnn.
  • RTP Stream Analysis can no longer be sorted in 2.0.3.
  • RTP Stream Analysis fails to complete in 2.0.3 when packets are sliced.
  • Network-Layer Name Resolution uses first 32-bits of IPv6 DNS address as IPv4 address in some circumstances.
  • BACnet decoder incorrectly flags a valid APDU as a "Malformed Packet".
  • Valid ISUP messages marked with warnings.
  • Profile command line switch "-C" not working in Qt interface.
  • MRCPv2: info column not showing info correctly.
  • Diameter: Experimental result code 5142.
  • Tshark crashes when analyzing RTP due to pointer being freed not allocated.
  • NFS: missing information in getattr for supported exclusive create attributes.
  • Ethernet type field with a value of 9100 is shown as "Unknown".
  • Documentation does not include support for Windows Server 2012 R2.
  • Column preferences ruined too easily.
  • SMB Open andX extended response decoded incorrectly.
  • SMB NtCreate andX with extended response sometimes incorrect.
  • Viewing NFSv3 Data, checking SRTs doesn’t work.
  • Make wireshark with Qt enabled buildable on ARM.

Protocol Support:

6LoWPAN, ACAP, Asterix, BGP, DMP, DNS, DTLS, EAP, FMTP, GPRS LLC, GSM A, GSM A GM, GSM CBCH, GSM MAP, GTPv2, HTTP, IAX2, IEEE 802.11, iWARP MPA, MS-WSP, MySQL, NCP, NFS, PKTC, QUIC, R3, RTP, SMB, SPRT, TCP, ZEP, ZigBee, ZigBee NWK, ZigBee ZCL SE, and ZVT


Installation Instructions

As of now the PPA is not updated to the latest version 2.0.4 , we will let you know once PPA updated.but below are the instructions for installation.

Step 1 : Add the official PPA
sudo add-apt-repository ppa:wireshark-dev/stable
Step 2 : update the repository
sudo apt-get update
Step 3 : install wireshark 2.0 
sudo apt-get install wireshark

During the installation, it will require to confirm security about allowing non-superuser to execute Wireshark. 

Just confirm YES if you want to. If you check on NO, you must run Wireshark with sudo. Later, if you want to change this,
sudo dpkg-reconfigure wireshark-common
Share it:

Post A Comment: