FIRMWARE RELEASE NOTE ====================== Products affected: AXIS Q3708-PVE Release date: 2019-11-28 Release type: Production Firmware version: 6.55.7.1 Preceding release: 6.55.7 -------------------------------------------------------------------------------- Upgrade instructions ==================== Upgrade the firmware according to the instructions given at https://www.axis.com/ca/en/support/tecnical-notes/how-to-upgrade or howtoupgrade.txt, which is included in the firmware folder. NOTE ==================== For latest information about Axis Cybersecurity, see https://www.axis.com/se/sv/support/product-security. Corrections in 6.55.7.1 since 6.55.7 ===================================== 6.55.7.1:C01 Corrected an issue that caused loss of network connections. 6.55.7.1:C02 Corrected an issue that caused an erroneous timestamp to be shown in text overlays. Corrections in 6.55.7 since 6.55.6 =================================== 6.55.7:C01 Removed the root users default password in factory defaulted firmware. The password of the root user must be set first in order to initialize VAPIX and ONVIF interfaces to allow further configuration. This change only affects products in its factory defaulted state, products that are already deployed in production systems are not affected by this update until factory defaulted. 6.55.7:C02 Corrected an issue that caused snapshot JPEG images to contain erroneous data and resulting in problems to display them in some viewers. 6.55.7:C03 Increased the limit of concurrent HTTP requests for I/O related VAPIX commands from 4 to 10. 6.55.7:C04 Corrected an issue that prevented the insertion of triggered data in SEI messages when streaming H.264. 6.55.7:C05 Updated OpenSSL to version 1.0.2s to increase overall minimum cyber security level. 6.55.7:C06 Updated libssh2 to version 1.8.2 due to that version 1.8.1 broke publickey-userauth requests. 6.55.7:C07 Updated Mozilla ca-certificates to versions available at 20190122. 6.55.7:C08 Corrected security vulnerability in Systemd CVE-2019-6454 to increase overall minimum cyber security level. 6.55.7:C09 Improved robustness of the O3C client. 6.55.7:C10 Updated Apache to version 2.4.39 to increase overall minimum cyber security level. 6.55.7:C11 Patched the following security vulnerabilities to increase overall minimum cyber security level: CVE-2019-3855, CVE-2019-3856, CVE-2019-3857, CVE-2019-3858, CVE-2019-3859, CVE-2019-3860, CVE-2019-3861, CVE-2019-3862, CVE-2019-3863. 6.55.7:C12 Corrected the following vulnerabilities in order to increase overall minimum cyber security level: CVE-2018-16865, CVE-2018-16866. 6.55.7:C13 Corrected an issue that prevented the user from uploading a certificate that contains "Bag Attributes" before and after the actual certificate content. 6.55.7:C14 Corrected an issue that caused event notifications not been triggered on storage disruption. 6.55.7:C15 Corrected an issue with HTTP response which prevented the camera from streaming on rare occasions. 6.55.7:C16 Corrected an issues that could cause an incorrect error message when testing HTTP recipient. 6.55.7:C17 Patched security vulernability in the Linux kernel CVE-2018-17182 to increase overall minimum cyber security level. 6.55.7:C18 Adjusted re-connection behavior of interrupted AVHS connections on AVHS-server side. The time between failed connection attempts will now gradually increase until a hard limit is reached. 6.55.7:C19 Patched the security vulnerability CVE-2017-16544 in BusyBox to increase overall minimum cyber security level. 6.55.7:C20 Corrected an issue in the ACAP framework that could cause ACAPs to freeze on rare occasions. 6.55.7:C21 Corrected an issue that could cause corrupted video recordings when UserData or TriggerData are enabled. New features in 6.55.6 ================================================================================ 6.55.6:F1 If Network Share is setup to use DNS host name as host and if the IP address changes after mount, the host name is resolved to current IP address. 6.55.6:F2 Corrected behavior for conditional triggers. 6.55.6:F3 Improved handling for networks with small MTU values. 6.55.6:F4 Improved Zipstream using dynamic frame rate. 6.55.6:F5 Support for ONVIF Profile G. Corrections in 6.55.6 ================================================================================ 6.55.6:C1 Improvements in session ID handling for rtsp streaming. Useful when streaming in some video clients. 6.55.6:C2 Disabled the Energy-Efficient Ethernet mode that caused network connection issues on rare occasions. 6.55.6:C3 Added ACAP support for NV12 format. 6.55.6:C4 Corrected possibility to include SPS (Sequence Parameter Set) and PPS (Picture Parameter Set) in the stream according to ACAP documentation. 6.55.6:C5 Fixed issues with stopped events for manually triggered recording. 6.55.6:C6 Date format now displayed correctly in ACM. 6.55.6:C7 Optimized Network Share polling frequency. 6.55.6:C8 Improved stability in actionengine (tcp notification). Known Bugs/Limitations ================================================================================ 6.55.7.1:L1 WDR Forensic Capture is only possible when the Exposure control setting is set to Automatic. Any settings done in non WDR Forensic Capture mode will be invisible when in WDR Forensic Capture mode. Supported AXIS VAPIX API Image Resolutions for AXIS Q3708-PVE ================================================================================ Resolution Exceptions ========== ========== 2560x1920 3) 2560x1440 2) 1920x1080 2) 1600x1200 3) 1280x960 3) 1280x720 2) 1024x768 3) 800x600 3) 800x450 2) 640x480 3) 640x360 2) 480x360 3) 480x270 2) 320x240 3) 768x576 1) 3) 704x576 1) 704x480 1) 384x288 1) 3) 352x240 1) 176x144 1) 176x120 1) 80x60 1) 1) Not visible in web user interface 2) QHD 2560x1440 (16:9) 3) 5 MP 2560x1920 (4:3)