FIRMWARE RELEASE NOTE ======================== Products affected: M3077-PLVE Release date: 2021-11-26 Release type: Production Firmware version: 10.8.2 Preceding release: 10.8.1 -------------------------------------------------------------------------------- Upgrade recommendations ======================== When updating the device, it is recommended to do an intermediate upgrade using an available AXIS OS LTS-release on the way to the desired AXIS OS version. For example, if the device currently is running AXIS OS 7.40 and you want to upgrade to the latest AXIS OS Active Track (Example: 10.1, October 2020) then you should do the upgrade in these steps: 7.40 => 8.40 LTS => 9.80 LTS => 10.1. More detailed recommendations can be found in the AXIS OS portal at https://www.axis.com/support/firmware. Upgrade the firmware according to the instructions given in howtoupgrade.txt, which is included in the firmware folder or according to instructions at https://www.axis.com/support/firmware. NOTE ======================== For latest information about Axis Cybersecurity, see: https://www.axis.com/support/product-security Features in 10.8.1 ================================================================================ 10.8.1:F1 Upgraded Apache to version 2.4.51. 10.8.0:F1 Added support in action service - send notification action (HTTP/HTTPS) for optionally supplying; method, HTTP headers and (for applicable method types) a body. Added support in HW2 action engine UI to specify Method, HTTP headers and body. Added support in preview UI (ADA) to specify Method, HTTP headers and body. 10.8.0:F2 Added support for POST/PUT/PATCH/DELETE HTTP methods in event rule HTTP notifications actions. Together with the new methods, it is also possible to provide custom request body and HTTP headers. UI support is only available in the new web GUI. 10.8.0:F3 Device-level topic prefix support added. This feature can be used to specify a topic prefix that can be reused when publishing and subscribing to MQTT messages. This prefix can also be utilized as a device id within the global topic structure. 10.8.0:F4 Added support to create filepath when exporting to external disk. 10.7.0:F1 ACAPs containing a manifest.json file are now fully supported. The manifest.json file contains settings and parameters for the application. The older package.conf file is still supported. 10.7.0:F2 Added support for .ogg and .opus encoded mediaclips. 10.7.0:F3 Net-SNMP is now the new SNMP backend for AXIS OS devices and will replace the legacy SNMP backend that was used previously. Net-SNMP provides significant higher security mechanism and authentication for SNMPv3 than previously could be provided. 10.7.0:F4 Added support for MQTT subscription. With this support, it will be possible to use incoming MQTT messages as action triggers in the rule engine of the new preview web GUI. 10.7.0:F5 Added support for allocation of max-power via Link Layer Discovery Protocol (LLDP) in addition to PoE-class based power allocation for AXIS M3077-PLVE/PLE. This allows the switch to allocate less power to the camera and potentially a greater number of PoE devices can be connected to the switch. LLDP can be enabled in Settings > System > PlainConfig > Network >LLDP POE > LLDP Send Max PoE. 10.7.0:F6 Extended the 802.1x EAP-Identity field character limit from 32 to 128 characters. 10.7.0:F7 Added optional API status property in VAPIX API Discovery JSON response body. 10.7.0:F8 Updated Apache to version 2.4.48 to increase overall cybersecurity level. 10.7.0:F9 Updated OpenSSL to version 1.1.1l to increase overall minimum cybersecurity level. 10.7.0:F10 Updated Video Motion Detection to version 4.5.1. Fixed a streaming issue on configuration web page on some products. 10.6.0:F1 MQTT subscription support added. With this support, it will be possible to use incoming MQTT messages as action triggers in the rule engine. 10.6.0:F2 Added the possibility to show Day night Information switch in overlay text by using #dn. This will show both the current value and the threshold value for the day/night change. 10.6.0:F3 Added option to select which overlay should be used in a stream profile. 10.6.0:F4 Added "Audio clip playing" as a new condition in event system. 10.6.0:F5 HTTPS Ciphers are checked and unsupported ciphers removed on standard firmware upgrade 10.6.0:F6 Added a parameter to disable Apache & OpenSSL version in HTTP(S) responses in Plain Config -> System. 10.6.0:F7 Upgraded OpenSSL to 1.1.1k to increase overall minimum cyber security level. 10.6.0:F8 Updated Video Motion Detection to version 4.5.0. 10.6.0:F9 Support of stream specific legacy overlay is removed on Artpec platform. With this change, the URL option for both legacy image and text overlay will not be supported any more on Artpec platform. 10.5.0:F1 RTSP and HTTP stream URL:s now allow for filtering overlays based on overlay type. This is done by setting 'overlays=' in the URL (only one value). 10.5.0:F2 Updated pjsip to version 2.10 to increase overall cyber security. 10.5.0:F3 OpenSSL upgraded to 1.1.1j to fix CVE-2021-23841 and CVE-2021-23840. 10.4.0:F1 Added support for new action "Publish MQTT", available in the web-interface in Events -> Device events -> Rules setup. This new action allows to publish MQTT messages with custom topic and payload. 10.4.0:F2 Added feature for automatic dimming of individual IR-LEDs to optimize image quality in situations where camera is placed close to a wall or a corner. 10.4.0:F3 Added possibility to select which source should be shown by default in the web interface. To set, go to Settings -> System -> Plain config -> Layout -> Live view video, and select the number for the source. 10.4.0:F4 Successful and failed user login attempts are now logged in detail when the Access Log parameter is enabled from Plain Config -> System -> Access Log 10.4.0:F5 OpenSSL upgraded to 1.1.1i to fix CVE-2020-1971. 10.3.0:F1 MQTT is now activated by default upon power loss or reboot if MQTT was enabled prior to it. 10.3.0:F2 Trigger Data functionality has been removed. Support for Trigger Data will continue on 9.80 LTS. 10.3.0:F3 Added possibility to set a wear level for the SD card that the event system can trigger on. This is set in the Storage page. 10.3.0:F4 SD card wear level is now displayed on the Storage page if the SD card supports this feature. 10.3.0:F5 Added support for audit logging when a user exports video from the device's edge recording (SD card, network share). 10.3.0:F6 Updated OpenSSL to version 1.1.1h to increase overall minimum cyber security level. 10.3.0:F7 Updated Video Motion Detection to version 4.4.9. 10.3.0:F8 Updated Fence Guard to version 2.2.8. 10.3.0:F9 Updated Loitering Guard to version 2.2.8. Corrections in 10.8.2 ================================================================================ 10.8.2:C1 Improved system stability. Corrections in 10.8.1 ================================================================================ 10.8.0:C1 Corrected CVE-2021-31987. 10.8.0:C2 Updated the header for H.265 streams to not include delay information in order to avoid that some video clients may mistake it for B-frames. 10.7.3:C1 Improved streaming stability for devices used in Axis Companion systems. 10.7.1:C1 Corrected a network issue that on rare occasions could cause the product to lose its internet-connection. 10.7.0:C1 Corrected CVE-2021-31986. 10.7.0:C2 Corrected CVE-2021-31988. 10.7.0:C3 Corrected an issue that prevented legacy motion detection from working. 10.7.0:C4 Corrected an issue with MQTT subscriptions when reconnecting. 10.7.0:C5 Corrected MQTT default message so it no longer starts with an empty string. 10.7.0:C6 Corrected an issue that caused the "Anonymous viewer" functionality to be removed after upgrade to 10.6.0. 10.7.0:C7 Corrected an issue that interrupted the NTP-time-sync between the Axis device and NTP-server when the NTP-server was operating instable and suffered fluctuating time-changes. 10.7.0:C8 Audio now uses the new audiodevicecontrol.cgi instead of the old API. This means that the gain values may be different in the GUI, but the actual audio level should be the same as before. 10.7.0:C9 Corrected an issue that caused input gain to revert to default value after upgrade. 10.7.0:C10 Corrected an issue that prevented the Sound Intelligence Sound Detector ACAP to get an audio stream. 10.7.0:C11 Improved RTP timestamp accuracy for metadata streams. 10.7.0:C12 Corrected an issue that could cause an RTSP stream to stop after 60+ seconds if streamed to an openRTSP client. 10.6.7:C1 Corrected an issue with MQTT subscriptions when reconnecting. 10.6.7:C2 General improvements in streaming management. 10.6.2:C1 General improvements in streaming management. 10.6.0:C1 Improved Motion Detection to handle scenes with extreme lighting changes , improving general behavior for applications that make use of this engine and data. 10.6.0:C2 Improved behavior when using Guard Tour with the Control Queue. 10.6.0:C3 Corrected an issue that did not account for MTU packet fragmentation for IEEE 802.1x authentication. Previously the Axis device was not able to authenticate properly against an 802.1x network when the MTU was configured to 1410 or lower. 10.6.0:C4 Corrected an issue that on some occasions could prevent export of a part of a recording. 10.6.0:C5 Corrected an issue that in combination with some VMSes and low resolution could cause brief disconnections in the video stream. 10.5.2:C1 Corrected an issue that on some occasions prevented an upgrade to firmware version 10.5.0. 10.5.2:C2 Corrected an issue that could cause O3C-based connections with the device to be interrupted. 10.5.0:C1 Increased the number of allowed characters for event condition name to 512. 10.5.0:C2 Corrected an issue that prevented the use of some special characters in ONVIF passwords. 10.5.0:C3 Corrected an issue that prevented the Axis device to respond with HTTP 403 Forbidden when the source-ip address was blocked when using PreventDOSAttack in Plain Config -> System. Previously HTTP 401 Unauthorized was returned. 10.4.0:C1 Corrected an issue that erased the password from the MQTT broker connection settings when editing settings occasionally. This required the user to re-enter the password when this happened. 10.4.0:C2 Corrected an issue that caused the MQTT configuration in the device to get corrupt on rare occasions. 10.4.0:C3 Corrected an issue that could caused an MQTT event to be duplicated upon registering the same event multiple times. 10.4.0:C4 Updated digital input LogicalState metadata API to consistently use 0/1 on all camera models. 10.4.0:C5 Corrected an issue that caused the device to send an EPRT command when transferring an image or video via FTP instead of an EPSV command. 10.4.0:C6 Corrected an issue where a network share used as a recipient could get its properties overwritten by another network share created from the Storage page. 10.4.0:C7 Corrected nice names for the PreventDoSAttack parameters in Settings -> System -> Plain Config-> System -> PreventDoSAttack. 10.4.0:C8 Improved Link Layer Discovery Protocol (LLDP) system stability. 10.4.0:C9 Corrected response for NTP API version. 10.3.3:C1 Fixed the camera booting issue when the cover top is off. 10.3.2:C1 Corrected an issue where gain got higher value when toggling AGC on/off. 10.3.0:C1 Corrected an issue that caused video clients to not display a low-FPS video stream due to missing base FPS info in VUI timing info. 10.3.0:C2 Corrected an issue that prevented setting the gain individually on the left and right channel on products with stereo audio input. 10.3.0:C3 Corrected an issue that caused PKCS#12-formatted certificate uploads to fail when certain special characters were used as a password. 10.3.0:C4 Corrected text for time offset in the Date & Time web page, the offset is now shown in milliseconds instead of seconds. 10.3.0:C5 Corrected an issue with pause-frame handling that could cause network disconnections if pause-frames were enabled and used in the network. 10.3.0:C6 Corrected an issue that prevented the device to utilize the available network bandwidth in high-latency networks such as 4G cellular network. 10.3.0:C7 Corrected an issue that caused the audio transfer over HTTPS to not work properly and with that, the audio-gain-level behavior was also reverted back to the state it was known in AXIS OS releases up to AXIS OS 10.0.2. It is therefore mandatory to upgrade to AXIS OS 10.3 when experiencing audio-related issues on Axis devices running on AXIS OS 10.1 and 10.2. Upon release of AXIS OS 10.3, AXIS OS 10.1 and 10.2 will be made unavailable for download from www.axis.com moving forward. 10.3.0:C8 Improved video streaming stability in multi-stream- and ONVIF Audio Backchannel scenarios. 10.3.0:C9 Corrected an issue that caused the value of Quality of Service (QoS) to not be respected in always multicast mode. 10.3.0:C10 Corrected an issue that prevented the device to stream in always-multicast mode after the video stream processing has been restarted. Known Bugs/Limitations ================================================================================ 10.2.2:L1 No video for FPS lower than 14 during incoming/outgoing call to a softphone. 10.2.2:L2 Whitebalance and exposure custom boxes resize improperly when the digital roll is used. 10.2.2:L3 The image quality is degraded for incoming calls from registered accounts. 10.2.2:L4 Digital roll does not correctly load in Firefox. 10.2.2:L5 After changing quad view order a couple of times, only one view is displayed. Refresh the page to get the correct views. 10.2.2:L6 Outgoing call for a registered account for TLS transport method is not working properly. 10.2.2:L7 Audio encoding AAC with a bitrate below 16 kbps is not supported when stereo is enabled. Supported AXIS VAPIX API Image Resolutions for M3077-PLVE ================================================================================ Resolution Exceptions Capture mode ------------ ------------------------------ -------------- 2560x1920 4) 5) 10) 11) 2560x1440 3) 4) 5) 10) 11) 2560x960 3) 11) 2560x720 3) 11) 2432x1824 4) 5) 10) 11) 2368x1184 7) 8) 11) 2304x1728 4) 5) 10) 11) 2304x1296 3) 4) 5) 10) 11) 2304x864 3) 7) 8) 11) 2304x648 3) 11) 2048x1536 4) 5) 10) 11) 2048x1152 3) 4) 5) 10) 11) 2048x576 3) 11) 2016x2016 2) 9) 11) 12) 1920x1920 2) 9) 11) 12) 1920x1440 4) 5) 6) 9) 10) 11) 1920x1080 6) 11) 1920x720 3) 7) 8) 11) 1792x1344 4) 5) 9) 11) 1728x1728 2) 9) 11) 12) 1728x1296 6) 10) 11) 1728x648 3) 7) 8) 11) 1600x1200 4) 5) 6) 9) 10) 11) 1600x600 3) 7) 8) 11) 1440x1440 2) 9) 11) 12) 1280x1280 2) 11) 12) 1280x720 3) 4) 5) 6) 10) 11) 1280x480 3) 7) 8) 11) 1280x360 3) 11) 1200x1200 2) 11) 12) 1024x768 4) 5) 6) 9) 10) 11) 1024x576 3) 4) 5) 6) 10) 11) 960x720 4) 5) 6) 9) 10) 11) 960x360 3) 7) 8) 11) 800x800 2) 11) 12) 768x576 4) 5) 6) 9) 10) 11) 768x288 3) 7) 8) 11) 720x720 2) 11) 12) 640x640 2) 9) 11) 12) 640x480 4) 5) 6) 9) 10) 11) 640x240 3) 7) 8) 11) 512x288 4) 5) 11) 480x480 2) 9) 11) 12) 384x288 4) 5) 6) 9) 10) 11) 384x144 3) 7) 8) 11) 320x320 2) 11) 12) 320x240 6) 10) 11) 320x120 3) 7) 8) 11) 256x192 4) 5) 9) 11) 256x144 3) 6) 10) 11) 240x240 2) 11) 12) 192x72 3) 7) 8) 11) 160x160 2) 11) 12) 1024x768 1) 2) 3) 4) 5) 6) 7) 8) 9) 10) 11) 12) 1) Not visible in web user interface 2) Available for Overview view 3) Available for Panorama view 4) Available for Double Panorama view 5) Available for Quad view 6) Available for View area 7) Available for Corner Left view 8) Available for Corner Right view 9) Available for Double Corner view 10) Available for Corridor view 11) 360° overview @ 30/25 fps dewarped views WDR 12) 360° overview only @ 60/50 fps no WDR