FIRMWARE RELEASE NOTE ====================== Products affected: P3925-LRE Release date: 2022-09-07 Release type: Production Firmware version: 9.80.3.14 Preceding release: 9.80.3.13 -------------------------------------------------------------------------------- This is the LTS-2020 track. Upgrade recommendations ======================== If you need to step up your firmware several steps, it is recommended to do an intermediate upgrade to LTS-tracks before proceeding. For example if the current version is 7.40 and you want to upgrade to 9.80. Then you should do the upgrade in these steps: 7.40 => 8.40 LTS => 9.80. Upgrade the firmware according to the instructions given in howtoupgrade.txt, which is included in the firmware folder or at the firmware portal at https://www.axis.com NOTE ======================== For latest information about Axis Cybersecurity, see: https://www.axis.com/support/product-security Corrections in 9.80.3.14 since 9.80.3.13 ========================================= 9.80.3.14:C01 General improvements to the LTS-2020 platform. 9.80.3.14:C02 Updated curl to version 7.84.0 to increase overall cybersecurity level. 9.80.3.14:C03 Products with hardware ID 999 only support active track firmware 10.12.105 and later, as well as LTS 9.80.3.14 and later. Products with hardware ID 7CC support all firmware versions. The hardware ID can be found in Plain config > Properties > System > HardwareID. Corrections in 9.80.3.13 since 9.80.3.12 ========================================= 9.80.3.13:C01 General improvements to the LTS-2020 platform. 9.80.3.13:C02 Corrected an issue where 802.1X would not trust the intermediate certificate authority (CA). 9.80.3.13:C03 Upgraded Apache to version 2.4.54 to increase overall cybersecurity level. 9.80.3.13:C04 ONVIF recordings are now continued automatically after disruptions. 9.80.3.13:C05 Updated OpenSSL to version 1.1.1q to increase the overall cybersecurity level. Corrections in 9.80.3.12 since 9.80.3.11 ========================================= 9.80.3.12:C01 General improvements to the LTS-2020 platform. 9.80.3.12:C02 Corrected CVE-2018-25032. 9.80.3.12:C03 Updated OpenSSL to version 1.1.1o to increase the overall cybersecurity level. 9.80.3.12:C04 Updated Curl to version 7.83.1 to increase overall cybersecurity level. Corrections in 9.80.3.11 since 9.80.3.10 ========================================= 9.80.3.11:C01 General improvements to the LTS-2020 platform. 9.80.3.11:C02 Receiving ICMP redirects from other network hosts are now disabled to increase overall minimum cybersecurity level. 9.80.3.11:C03 Corrected CVE-2021-33910. 9.80.3.11:C04 Updated the certificate management API's to handle camera models that do not support Real- Time Streaming Protocol over SSL (RTSPS). 9.80.3.11:C05 Updated OpenSSL to version 1.1.1n to increase the overall minimum cybersecurity level. 9.80.3.11:C06 Corrected CVE-2021-29462. 9.80.3.11:C07 Updated wpa-supplicant to version 2.10 to increase overall minimum cybersecurity level. 9.80.3.11:C08 Improved memory management in the network services daemon. 9.80.3.11:C09 Upgraded Apache to version 2.4.53 to increase overall cybersecurity level. Corrections in 9.80.3.10 since 9.80.3.8 ======================================== 9.80.3.10:C01 General improvements to the LTS-2020 platform. 9.80.3.10:C02 Upgraded Apache to version 2.4.52 to increase overall cybersecurity level. 9.80.3.10:C03 Improved handling of empty recordings. 9.80.3.10:C04 Corrected an issue that caused the Send images event to stop uploading towards a FTP server when the filename included a space (" "). 9.80.3.10:C05 Corrected CVE-2020-13848. 9.80.3.10:C06 Corrected an issue that caused the IR-cut filter to get stuck halfway. 9.80.3.10:C07 Updated OpenSSL to version 1.1.1m to increase the overall cybersecurity level. Corrections in 9.80.3.8 since 9.80.3.7 ======================================= 9.80.3.8:C01 General improvements to the LTS-2020 platform. Corrections in 9.80.3.7 since 9.80.3.5 ======================================= 9.80.3.7:C01 General improvements to the LTS-2020 platform. 9.80.3.7:C02 Improved system stability of the Network Services. 9.80.3.7:C03 Upgraded Apache to version 2.4.51 to increase overall cybersecurity level. 9.80.3.7:C04 Corrected an issue that could cause 'transmit.cgi' to close connection prematurely when transmitting audio to the camera. 9.80.3.7:C05 Updated OpenSSL to version 1.1.1l to increase overall cybersecurity level. 9.80.3.7:C06 Updated curl to version 7.79.1 to increase overall cybersecurity level. 9.80.3.7:C07 Updated the header for H.265 streams to not include delay information in order to avoid that some video clients may mistake it for B-frames. 9.80.3.7:C08 The Remote Syslog configuration is now preserved during a firmware update within the same firmware track. 9.80.3.7:C09 Corrected an issue that caused Overlay text flickers when used in conjunction with an event triggered by Recording ongoing condition. 9.80.3.7:C10 Corrected an issue that caused active recordings to be restarted when adding a new recording rule. Corrections in 9.80.3.5 since 9.80.3.3 ======================================= 9.80.3.5:C01 General improvements to the LTS-2020 platform. 9.80.3.5:C02 Corrected an issue that interrupted the NTP-time-sync between the Axis device and NTP- server when the NTP-server was operating instable and suffered fluctuating time-changes. 9.80.3.5:C03 Corrected CVE-2021-31987. 9.80.3.5:C04 Corrected CVE-2020-26558. 9.80.3.5:C05 Corrected CVE-2021-31986. 9.80.3.5:C06 Corrected CVE-2021-31988. 9.80.3.5:C07 Updated curl to version 7.78.0 to increase overall cybersecurity level. 9.80.3.5:C08 Updated Apache to version 2.4.48 to increase overall cyber security level. 9.80.3.5:C09 Corrected CVE-2021-27219. 9.80.3.5:C10 Corrected CVE-2021-27218. Corrections in 9.80.3.3 since 9.80.3.2 ======================================= 9.80.3.3:C01 General improvements to the LTS-2020 platform. 9.80.3.3:C02 Corrected an issue that did not account for MTU packet fragmentation for IEEE 802.1x authentication. Previously the Axis device was not able to authenticate properly against an 802.1x network when the MTU was configured to 1410 or lower. 9.80.3.3:C03 Corrected an issue that prevented the device to stream in always-multicast mode after the video stream processing has been restarted. 9.80.3.3:C04 Extended the 802.1x EAP-Identity field character limit from 32 to 128 characters. 9.80.3.3:C05 Increased the number of characters allowed in the name of an Action Event Condition, from 80 to 512. 9.80.3.3:C06 Updated OpenSSH to version 8.6p1 to increase the overall minimum cyber security level. Corrections in 9.80.3.2 since 9.80.3.1 ======================================= 9.80.3.2:C01 General improvements to the LTS-2020 platform. 9.80.3.2:C02 Corrected an issue that on rare occasions caused the image to turn green after a power loss. 9.80.3.2:C03 Corrected an issue that on some occasions could prevent export of a part of a recording. 9.80.3.2:C04 Updated OpenSSL to version 1.1.1k to fix CVE-2021-3449 and CVE-2021-3450. 9.80.3.2:C05 Corrected an issue that prevented the Axis device to respond with HTTP 403 Forbidden when the source-ip address was blocked when using PreventDOSAttack in Plain Config -> System. Previously HTTP 401 Unauthorized was returned. 9.80.3.2:C06 Added support for Micron SD Card Health Monitoring. 9.80.3.2:C07 Improved Link Layer Discovery Protocol (LLDP) system stability. 9.80.3.2:C08 Corrected nice names for the PreventDoSAttack parameters in Settings -> System -> Plain Config-> System -> PreventDoSAttack. Corrections in 9.80.3.1 since 9.80.3 ===================================== 9.80.3.1:C01 General improvements to the LTS-2020 platform. 9.80.3.1:C02 Improved Link Layer Discovery Protocol (LLDP) system stability. 9.80.3.1:C03 Updated Curl to version 7.73.0 to increase overall cybersecurity level. 9.80.3.1:C04 Updated OpenSSL to version 1.1.1i to increase overall cyber security level. 9.80.3.1:C05 Corrected an issue that caused the MQTT configuration in the device to get corrupt on rare occasions. 9.80.3.1:C06 Corrected an issue that could cause an MQTT event to be duplicated upon registering the same event multiple times. Known Bugs/Limitations ================================================================================ 9.80.3:L1 Compatibility issues with AXIS T8415 Wireless Installation Tool where capture mode is not always updated when changed. 9.80.3:L2 Compatibility issues with AXIS T8705 during image rotation. 9.80.3:L3 The option "Auto" under orientation in image setting has no function. Supported AXIS VAPIX API Image Resolutions for P3925-LRE ================================================================================ Resolution Exceptions Capture mode ------------ ------------ -------------- 1920x1080 2) 1280x960 2) 1280x800 2) 1280x720 2) 3) 1024x768 2) 3) 1024x640 2) 3) 800x600 2) 3) 800x500 2) 3) 800x450 2) 3) 640x480 2) 3) 640x400 2) 3) 640x360 2) 3) 480x360 2) 3) 480x300 2) 3) 480x270 2) 3) 320x240 2) 3) 320x200 2) 3) 320x180 2) 3) 240x180 2) 3) 176x144 2) 3) 160x120 2) 3) 160x100 2) 3) 160x90 2) 3) 1440x1080 1) 2) 1440x900 1) 2) 1400x1050 1) 2) 1024x576 1) 2) 3) 768x576 1) 2) 3) 720x576 1) 2) 3) 704x576 1) 2) 3) 704x480 1) 2) 3) 704x288 1) 2) 3) 704x240 1) 2) 3) 384x288 1) 2) 3) 352x288 1) 2) 3) 352x240 1) 2) 3) 192x144 1) 2) 3) 176x120 1) 2) 3) 80x50 1) 2) 3) analyze 1) 2) 3) 1) Not visible in web user interface 2) 2MP 1920x1080 (16:9) @ 25/30 fps 3) 1MP 1280x720 (16:9) @ 45 fps