FIRMWARE RELEASE NOTE ====================== Products affected: AXIS P7224 Release date: 2023-02-02 Release type: Production Firmware version: 6.50.5.8 Preceding release: 6.50.5.7 -------------------------------------------------------------------------------- Upgrade instructions ==================== Upgrade the firmware according to the instructions given at https://www.axis.com/ca/en/support/technical-notes/how-to-upgrade or howtoupgrade.txt, which is included in the firmware folder. NOTE ==================== For latest information about Axis Cybersecurity, see https://www.axis.com/se/sv/support/product-security. Corrections in 6.50.5.8 since 6.50.5.7 ======================================= 6.50.5.8:C01 General improvements to the platform. 6.50.5.8:C02 Disabled secure redirects from other network hosts net.ipv4.conf.all.secure_redirects & net.ipv4.conf.default.secure_redirects to increase overall minimum cybersecurity level. 6.50.5.8:C03 Corrected an issue with the audio transmit function where the response to /axis- cgi/audio/transmit.cgi is returning a '400 Bad Request' error. Corrections in 6.50.5.7 since 6.50.5.6 ======================================= 6.50.5.7:C01 General improvements to the LTS-2016 platform. 6.50.5.7:C02 Updated OpenSSL to version 1.1.1s to increase the overall cybersecurity level. 6.50.5.7:C03 Updated curl to version 7.86.0 to increase overall cybersecurity level. 6.50.5.7:C04 Updated Apache to version 2.4.54 to increase overall cybersecurity level. 6.50.5.7:C05 Corrected an issue that caused Audio via external VMS to stop working. 6.50.5.7:C06 Corrected CVE-2018-25032. 6.50.5.7:C07 Corrected an issue that caused a wrong file size to be reported for recordings larger than 50MB when using FTP. 6.50.5.7:C08 Corrected an issue where 802.1X would not trust the intermediate certificate authority (CA). Corrections in 6.50.5.6 since 6.50.5.5 ======================================= 6.50.5.6:C01 General improvements to the LTS-2016 platform. 6.50.5.6:C02 Updated wpa-supplicant to version 2.10 to increase overall minimum cybersecurity level. 6.50.5.6:C03 Receiving ICMP redirects from other network hosts are now disabled to increase overall minimum cybersecurity level. 6.50.5.6:C04 Corrected an issue with uploading RSA certificate with PKCS#8 formatted private keys. 6.50.5.6:C05 Corrected an issue that caused the Send images event to stop uploading towards a FTP server when the filename included a space (" "). 6.50.5.6:C06 Improved handling of empty recordings. 6.50.5.6:C07 Corrected CVE-2019-15916. 6.50.5.6:C08 Upgraded cURL to version 7.79.1 to increase overall cybersecurity level. 6.50.5.6:C09 Corrected CVE-2020-13848. 6.50.5.6:C10 Corrected CVE-2021-29462. 6.50.5.6:C11 Corrected an issue that caused ONVIF AbsoluteMove commands to return a 500 Internal Server Error. 6.50.5.6:C12 Updated OpenSSL to version 1.1.1o to increase the overall minimum cybersecurity level. 6.50.5.6:C13 Upgraded Apache to version 2.4.53 to increase overall cybersecurity level. 6.50.5.6:C14 Fixed file permission when using disk encryption. Corrections in 6.50.5.5 since 6.50.5.4 ======================================= 6.50.5.5:C01 General improvements to the LTS-2016 platform. 6.50.5.5:C02 Corrected CVE-2021-31986. 6.50.5.5:C03 Corrected CVE-2021-31988. 6.50.5.5:C04 Updated OpenSSL to version 1.1.1l to increase overall minimum cybersecurity level. 6.50.5.5:C05 Corrected CVE-2021-31987. 6.50.5.5:C06 Updated OpenSSH to version 8.6p1 to increase the overall minimum cybersecurity level. 6.50.5.5:C07 Updated curl to version 7.78.0 to increase overall cybersecurity level. 6.50.5.5:C08 Corrected CVE-2019-12450. 6.50.5.5:C09 Extended the 802.1x EAP-Identity field character limit from 32 to 128 characters. 6.50.5.5:C10 Updated Apache to version 2.4.48 to increase overall cybersecurity level. 6.50.5.5:C11 Corrected CVE-2021-27218. 6.50.5.5:C12 Corrected CVE-2021-27219 Corrections in 6.50.5.4 ======================================= 6.50.5.4:C01 General improvements to the LTS-2016 platform. 6.50.5.4:C02 Corrected an issue that caused the value of Quality of Service (QoS) to not be respected in always multicast mode. 6.50.5.4:C03 Updated OpenSSL to version 1.1.1k to fix CVE-2021-3449 and CVE-2021-3450. 6.50.5.4:C04 Added support for health monitoring using Axis Micron SD card. Supported AXIS VAPIX API Image Resolutions for AXIS P7224 ========================================================= Resolution Exceptions ========== ========== 16CIF 1536x1152 2) 4) 1280x960 3) 4) XGA 1024x768 4) D1 720x576 2) 720x480 3) 4CIF 704x576 2) 704x480 3) 2CIF 704x288 2) 704x240 3) CIF 352x288 2) 352x240 3) QCIF 176x144 2) 176x120 3) VGA 640x480 1) analyze 1) 1) Not visible in web user interface 2) PAL mode resolution 3) NTSC mode resolution 4) Available on Quad channel