Wireshark 4.4.9 Fixes Critical Bugs, Boosts Protocols

The Wireshark Foundation has released version 4.4.9 of its widely used network traffic analyzer, delivering a maintenance update that enhances stability and resolves several key issues. Wireshark 4.4.9 fixes critical bugs, including a vulnerability in the SSH dissector (wnpa-sec-2025-03) that previously caused unexpected crashes during secure shell traffic analysis.

The release improves protocol support for BACapp, LIN, MySQL, RDM, SABP, SCCP, sFlow, and SSH, aligning dissector behavior with the latest standards. Wireshark 4.4.9 fixes critical bugs beyond SSH, such as incorrect RDM Product Detail List ID parsing and segmentation failures in SCCP LUDT decoding. Additional corrections address problems in Ciscodump, BACnet tag display, and the LZ77 decoder’s handling of length fields.

Available for Windows, macOS, and Linux, the update does not change file format handling but focuses on refining existing capabilities. Users can download the new version and review full details at the official announcement below.

Wireshark 4.4.9 Released With Fix For Critical Bugs and Updated Protocol Support