FIRMWARE RELEASE NOTE ====================== Products affected: P3245-LV / P3245-LVE / P3247-LV / P3247-LVE / P3248-LV / P3248-LVE Release date: 2022-05-23 Release type: Production Firmware version: 9.80.3.12 Preceding release: 9.80.3.11 -------------------------------------------------------------------------------- This is the LTS-2020 track. Upgrade recommendations ======================== If you need to step up your firmware several steps, it is recommended to do an intermediate upgrade to LTS-tracks before proceeding. For example if the current version is 7.40 and you want to upgrade to 9.80. Then you should do the upgrade in these steps: 7.40 => 8.40 LTS => 9.80. Upgrade the firmware according to the instructions given in howtoupgrade.txt, which is included in the firmware folder or at the firmware portal at https://www.axis.com NOTE ======================== - AXIS P3247-LV/-LVE and AXIS P3248-LV/-LVE Products with HardwareID 956.x only supports firmware 10.8.3 and later, as well as on LTS firmware track 9.80.3.9 and later. Products with HardwareID 91E.1, 91E.2, 91F.1 and 91F.2 only support active track firmware 10.4.0 and later as well as LTS track firmware 9.80.3.1 and later. Products with HardwareID 7BE.1, 7BE.2, 7BF.1 and 7BF.2 support all firmware versions. - AXIS P3245-LV/-LVE Products with HardwareID 910.1 and 910.2 only support active track firmware 10.3.0.1 and later as well as LTS track firmware 9.80.3.1 and later. Products with HardwareID 79F.1, 79F.2, 79F.3 and 79F.4 support all firmware versions. - The HardwareID can be found in Plain config -> Properties -> System -> HardwareID For more information, see https://www.axis.com/support/faq/FAQ116511 https://www.axis.com/support/faq/FAQ116515 For latest information about Axis Cybersecurity, see: https://www.axis.com/support/product-security Corrections in 9.80.3.12 since 9.80.3.11 ========================================= 9.80.3.12:C01 General improvements to the LTS-2020 platform. 9.80.3.12:C02 Corrected CVE-2018-25032. 9.80.3.12:C03 Updated OpenSSL to version 1.1.1o to increase the overall cybersecurity level. Corrections in 9.80.3.11 since 9.80.3.10 ========================================= 9.80.3.11:C01 General improvements to the LTS-2020 platform. 9.80.3.11:C02 On some units focus might drift over time. Lens control has been improved to reduce this type of issues. Calibrate (under Maintenance) and autofocus (under Image) the camera after upgrade. 9.80.3.11:C03 Receiving ICMP redirects from other network hosts are now disabled to increase overall minimum cybersecurity level. 9.80.3.11:C04 Corrected CVE-2021-33910. 9.80.3.11:C05 Updated the certificate management API's to handle camera models that do not support Real- Time Streaming Protocol over SSL (RTSPS). 9.80.3.11:C06 Updated OpenSSL to version 1.1.1n to increase the overall minimum cybersecurity level. 9.80.3.11:C07 Corrected CVE-2021-29462. 9.80.3.11:C08 Updated wpa-supplicant to version 2.10 to increase overall minimum cybersecurity level. 9.80.3.11:C09 Improved memory management in the network services daemon. 9.80.3.11:C10 Upgraded Apache to version 2.4.53 to increase overall cybersecurity level. Corrections in 9.80.3.10 since 9.80.3.9 ======================================== 9.80.3.10:C01 General improvements to the LTS-2020 platform. 9.80.3.10:C03 Improved handling of empty recordings. Corrections in 9.80.3.9 since 9.80.3.8 ======================================= 9.80.3.9:C01 General improvements to the LTS-2020 platform. 9.80.3.9:C02 Corrected CVE-2020-13848. 9.80.3.9:C03 Upgraded Apache to version 2.4.52 to increase overall cybersecurity level. 9.80.3.9:C04 Added support for HardwareID 956.x 9.80.3.9:C05 Corrected an issue that caused the Send images event to stop uploading towards a FTP server to stop when the filename included a space (" "). 9.80.3.9:C06 Updated OpenSSL to version 1.1.1m to increase the overall cybersecurity level. Corrections in 9.80.3.8 since 9.80.3.7 ======================================= 9.80.3.8:C01 General improvements to the LTS-2020 platform. Corrections in 9.80.3.7 since 9.80.3.5 ======================================= 9.80.3.7:C01 General improvements to the LTS-2020 platform. 9.80.3.7:C02 Improved system stability of the Network Services. 9.80.3.7:C03 Upgraded Apache to version 2.4.51 to increase overall cybersecurity level. 9.80.3.7:C04 Corrected an issue that could cause 'transmit.cgi' to close connection prematurely when transmitting audio to the camera. 9.80.3.7:C05 Updated OpenSSL to version 1.1.1l to increase overall cybersecurity level. 9.80.3.7:C06 Updated curl to version 7.79.1 to increase overall cybersecurity level. 9.80.3.7:C07 Updated the header for H.265 streams to not include delay information in order to avoid that some video clients may mistake it for B-frames. 9.80.3.7:C08 The Remote Syslog configuration is now preserved during a firmware update within the same firmware track. 9.80.3.7:C09 Corrected an issue that caused Overlay text flickers when used in conjunction with an event triggered by Recording ongoing condition. 9.80.3.7:C10 Corrected an issue that caused active recordings to be restarted when adding a new recording rule. Corrections in 9.80.3.5 since 9.80.3.3 ======================================= 9.80.3.5:C01 General improvements to the LTS-2020 platform. 9.80.3.5:C02 Corrected an issue that interrupted the NTP-time-sync between the Axis device and NTP- server when the NTP-server was operating instable and suffered fluctuating time-changes. 9.80.3.5:C03 Corrected CVE-2021-31987. 9.80.3.5:C04 Corrected CVE-2020-26558. 9.80.3.5:C05 Corrected CVE-2021-31986. 9.80.3.5:C06 Corrected CVE-2021-31988. 9.80.3.5:C07 Updated curl to version 7.78.0 to increase overall cybersecurity level. 9.80.3.5:C08 Updated Apache to version 2.4.48 to increase overall cyber security level. 9.80.3.5:C09 Corrected CVE-2021-27219. 9.80.3.5:C10 Corrected CVE-2021-27218. Corrections in 9.80.3.3 since 9.80.3.2 ======================================= 9.80.3.3:C01 General improvements to the LTS-2020 platform. 9.80.3.3:C02 Corrected an issue that did not account for MTU packet fragmentation for IEEE 802.1x authentication. Previously the Axis device was not able to authenticate properly against an 802.1x network when the MTU was configured to 1410 or lower. 9.80.3.3:C03 Corrected an issue that prevented the device to stream in always-multicast mode after the video stream processing has been restarted. 9.80.3.3:C04 Extended the 802.1x EAP-Identity field character limit from 32 to 128 characters. 9.80.3.3:C05 Increased the number of characters allowed in the name of an Action Event Condition, from 80 to 512. 9.80.3.3:C06 Updated OpenSSH to version 8.6p1 to increase the overall minimum cyber security level. Corrections in 9.80.3.2 since 9.80.3.1 ======================================= 9.80.3.2:C01 General improvements to the LTS-2020 platform. 9.80.3.2:C02 Corrected an issue that on rare occasions caused the image to turn green after a power loss. 9.80.3.2:C03 Corrected an issue that on some occasions could prevent export of a part of a recording. 9.80.3.2:C04 Updated OpenSSL to version 1.1.1k to fix CVE-2021-3449 and CVE-2021-3450. 9.80.3.2:C05 Corrected an issue that prevented the Axis device to respond with HTTP 403 Forbidden when the source-ip address was blocked when using PreventDOSAttack in Plain Config -> System. Previously HTTP 401 Unauthorized was returned. 9.80.3.2:C06 Added support for Micron SD Card Health Monitoring. 9.80.3.2:C07 Improved Link Layer Discovery Protocol (LLDP) system stability. 9.80.3.2:C08 Corrected nice names for the PreventDoSAttack parameters in Settings -> System -> Plain Config-> System -> PreventDoSAttack. Corrections in 9.80.3.1 since 9.80.3 ===================================== 9.80.3.1:C01 General improvements to the LTS-2020 platform. 9.80.3.1:C03 Corrected an issue that caused the MQTT configuration in the device to get corrupt on rare occasions. 9.80.3.1:C04 Updated OpenSSL to version 1.1.1i to increase overall cyber security level. 9.80.3.1:C05 Improved Link Layer Discovery Protocol (LLDP) system stability. 9.80.3.1:C06 Updated Curl to version 7.73.0 to increase overall cybersecurity level. 9.80.3.1:C07 Corrected an issue that could cause an MQTT event to be duplicated upon registering the same event multiple times. Corrections in 9.80.3 since 9.80.2.4 ===================================== 9.80.3:C01 General improvements to the LTS-2020 platform. 9.80.3:C02 Corrected an issue that sometimes could make it impossible to export the full length of recordings. 9.80.3:C03 Corrected an issue in oak.cgi that could cause invalid requests. 9.80.3:C04 Update OpenSSL to version 1.1.1h to increase overall cyber security level. 9.80.3:C05 Corrected an issue that prevented the device to utilize the available network bandwidth in high-latency networks such as 4G cellular network. 9.80.3:C06 Corrected an issue that caused PKCS#12-formatted certificate uploads to fail when certain special characters were used as a password. 9.80.3:C07 Corrected an issue with pause-frame handling that could cause network disconnections if pause-frames were enabled and used in the network. 9.80.3:C08 Added support for dynamic power allocation via Link Layer Discovery Protocol (LLDP) in addition to PoE-class based power allocation. This allows the switch to allocate less power to the camera and potentially a greater number of PoE devices can be connected to the switch. LLDP can be enabled in Settings -> System -> PlainConfig -> Network -> LLDP POE -> LLDP Send Max PoE. 9.80.3:C09 Updated IANA Time Zone Database to version 2020d to get the latest Time Zone updates. 9.80.3:C10 Corrected an issue in the Web GUI that caused an error message when using a client certificate with '>' character in it's ID for HTTPS access. 9.80.3:C11 Improved video streaming stability in multi-stream- and ONVIF Audio Backchannel scenarios. 9.80.3:C12 Corrected an issue that caused the value of Quality of Service (QoS) to not be respected in always multicast mode. Corrections in 9.80.2.4 since 9.80.2.3 ======================================= 9.80.2.4:C01 General improvements to the LTS-2020 platform. 9.80.2.4:C02 Corrected an issue that caused the device to stop video streaming over multicast after receiving multiple RTSP PLAY requests with "npt=0.000-" payload. 9.80.2.4:C03 Added support for HTTP Strict Transport Security (HSTS) when using HTTPS. 9.80.2.4:C04 Improved memory management when streaming audio. 9.80.2.4:C05 Improved focus algorithm. Corrections in 9.80.2.3 since 9.80.2.2 ======================================= 9.80.2.3:C01 General improvements to the LTS-2020 platform. 9.80.2.3:C02 Reduced time to built-up an RTSP video stream by 30% and more. 9.80.2.3:C03 Corrected an issue in FTP Send Image Action Rule that caused disabling of "Use Temporary File" checkbox to be ignored. 9.80.2.3:C04 Reduced time for the web interface to load. 9.80.2.3:C05 Updated Apache to version 2.4.46 to increase overall cyber security level. 9.80.2.3:C06 Corrected an issue that caused incorrect requests to be sent when testing passive mode FTP recipients. 9.80.2.3:C07 Corrected an issue that caused an error message to pop-up when pressing the test button of an event using HTTP recipients. 9.80.2.3:C08 The following HTTP headers are now configured per default to increase overall cybersecurity level: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block. Corrections in 9.80.2.2 since 9.80.2 ===================================== 9.80.2.2:C01 General improvements to the LTS 2020 platform. 9.80.2.2:C02 Corrected an issue in setcleanupmaxage.cgi that caused changed settings not to be applied directly. 9.80.2.2:C03 Corrected an issue that caused old recordings to not be removed after their retention period was expired. 9.80.2.2:C04 Corrected an issue that sometimes caused event triggered recordings to fail. 9.80.2.2:C05 Updated Curl to version 7.69.1 to increase overall cybersecurity level. Corrections in 9.80.2 since 9.80.1.1 ===================================== 9.80.2:C01 General improvements to the LTS 2020 platform. 9.80.2:C02 Corrected an issue in the MQTT Client that caused selected QoS not to be used when publishing events. 9.80.2:C03 Corrected an issue in the MQTT Client that caused source fields not to be sent. 9.80.2:C04 Updated Apache to version 2.4.43 to increase overall cyber security level. 9.80.2:C05 Update OpenSSL to version 1.1.1g to increase overall cyber security level. 9.80.2:C06 Added possibility to retrieve the device Owner Authentication Key (OAK) in the web GUI. Note that this functionality requires that the product have direct access to the internet. 9.80.2:C07 Corrected an issue that sometimes made it impossible to edit action rules after upgrade. Known Bugs/Limitations ================================================================================ 9.80.3.1:L1 No support for AXIS Edge Vault functionality for AXIS P3247-LV/-LVE and AXIS P3248-LV/-LVE on the 9.80 LTS track. 9.70.1:L1 It is not possible to upgrade the product from 9.60 to any other release while having SOCKS proxy configured in the product. 9.40.1.3:L1 Corrected an issue that could cause false RAM memory initialisation during boot- up on rare occasions. 9.40.1:L1 There might be event settings available that is not applicable to the product with the current setup. 9.30.1:L1 There might be features currently explained in the help files that may not be supported by the camera. 9.10.1:L1 It is recommended to perform firmware recovery to rollback the products firmware to a previous version. Downgrading the products firmware through the usual firmware upgrade process can cause configuration and ACAP loss. It is recommended to perform a factorydefault afterwards. 9.10.1:L2 Parts of the privacy mask may become invisible in rare occasions during configuration. If this happens, please try to modify the mask slightly. Supported AXIS VAPIX API Image Resolutions for P3245-LV / P3245-LVE / P3247-LV / P3247-LVE / P3248-LV / P3248-LVE ================================================================================ Resolution Exceptions Capture mode ------------ ------------ -------------- 3840x2160 5) 3072x1728 5) 2880x2160 5) 2688x1512 5) 6) 2592x1944 4) 5) 2592x1458 4) 5) 6) 2560x1440 4) 5) 6) 2304x1728 4) 5) 2016x1512 4) 5) 6) 1920x1440 4) 5) 6) 1920x1080 2) 3) 4) 5) 6) 1440x1080 2) 3) 4) 5) 6) 1440x900 2) 3) 1280x960 2) 3) 4) 5) 6) 1280x800 2) 3) 4) 5) 6) 1280x720 2) 3) 4) 5) 6) 1024x768 2) 3) 4) 5) 6) 1024x640 2) 3) 4) 5) 6) 1024x576 2) 3) 4) 5) 6) 800x600 2) 3) 4) 5) 6) 800x500 2) 3) 4) 5) 6) 800x450 2) 3) 4) 5) 6) 640x480 2) 3) 4) 5) 6) 640x400 2) 3) 4) 5) 6) 640x360 2) 3) 4) 5) 6) 480x360 2) 3) 4) 5) 6) 480x300 2) 3) 4) 5) 6) 480x270 2) 3) 4) 5) 6) 320x240 2) 3) 4) 5) 6) 320x200 2) 3) 4) 5) 6) 320x180 2) 3) 4) 5) 6) 240x180 2) 3) 160x120 2) 3) 4) 5) 6) 160x100 2) 3) 4) 5) 6) 160x90 2) 3) 4) 5) 6) 1400x1050 1) 2) 3) 4) 5) 6) 768x576 1) 2) 3) 4) 5) 6) 720x576 1) 2) 3) 4) 5) 6) 704x576 1) 2) 3) 4) 5) 6) 704x480 1) 2) 3) 4) 5) 6) 704x288 1) 2) 3) 4) 5) 6) 704x240 1) 2) 3) 4) 5) 6) 384x288 1) 2) 3) 4) 5) 6) 352x288 1) 2) 3) 4) 5) 6) 352x240 1) 2) 3) 4) 5) 6) 192x144 1) 2) 3) 4) 5) 6) 176x144 1) 2) 3) 4) 5) 6) 176x120 1) 2) 3) 4) 5) 6) 1) Not visible in web user interface 2) 1080p @ 25/30 fps (WDR) 3) 1080p @ 50/60 fps (no WDR) 4) 5MP 4:3 @ 25/30 fps (WDR) 5) 4K @ 25/30 fps (WDR) 6) 4MP 16:9 @ 25/30 fps (WDR)