FIRMWARE RELEASE NOTE ======================== Products affected: FA54 Release date: 2020-05-03 Release type: Production Firmware version: 9.80.1 Preceding release: 9.70.1.5 -------------------------------------------------------------------------------- Upgrade recommendations ======================== If you need to step up your firmware several steps, it is recommended to do an intermediate upgrade to LTS-tracks before proceeding. For example if the current version is 7.40 and you want to upgrade to 9.70. Then you should do the upgrade in these steps: 7.40 => 8.40 LTS => 9.40. Upgrade the firmware according to the instructions given in howtoupgrade.txt, which is included in the firmware folder or at the firmware portal at https://www.axis.com NOTE ======================== For latest information about Axis Cybersecurity, see: https://www.axis.com/support/product-security New features in 9.80.1 ================================================================================ 9.80.1:F1 Added the possibility to change source name. 9.80.1:F2 Added support for disabling the SD card slot in PlainConfig -> Storage -> Storage.S0.Enabled. After change, the camera needs to be restarted. 9.80.1:F3 Added support for Custom Header CGI. It is now possible to customize headers to support e.g. Access-Control-Allow-Origin (CORS) and X-Frame-Options to increase minimum cybersecurity level. Please https://www.axis.com/vapix-library for more information. 9.80.1:F4 Added support for Message Queuing Telemetry Transport protocol (MQTT). The AXIS products acts as a client able to publish its events to a MQTT broker. More information can be found in the VAPIX library at https://www.axis.com/vapix- library/. 9.80.1:F5 Added the functionality to automatically restart ongoing recordings when time in the product is updated significantly. This ensures that the time displayed in text overlays match the timeline. 9.80.1:F6 Updated Video Motion Detection to version 4.4.5. Features in 9.70.1.5 ================================================================================ 9.70.1:F1 Added support for resolve domain name trap addresses in SNMP. 9.70.1:F2 SEI (Supplemental enhancement information) messages is since 9.60.1 included in recorded H.264 videos. 9.60.1:F1 Added possibility to select stream profile for continuous recordings. 9.60.1:F2 Added possibility to set image rotation in ONVIF media profiles. 9.60.1:F3 Added Geolocation API. See VAPIX documentation for more information. 9.60.1:F4 Added possibility to copy action rules, schedules and recipients. 9.60.1:F5 Updated Video Motion Detection to version 4.4.3. 9.60.1:F6 Added NTP synchronization status to VAPIX Time API. 9.50.1:F1 Added support for setting image frequency in action rules. 9.50.1:F2 Updated Apache to version 2.4.41 to increase overall minimum cyber securitylevel. 9.50.1:F3 Updated OpenSSL to version 1.1.1d to increase overall minimum cyber securitylevel. 9.50.1:F4 Updated Video Motion Detection to version 4.4.2. 9.50.1:F5 Added possibility to disable the web UI to increase overall minimum cybersecurity level.The web UI can be disabled under System -> PlainConfig -> System -> System WebInterface Disabled.To enable the web UI after it has been disabled, the VAPIX parameterSystem.WebInterfaceDisabled must be set to "no". 9.40.1:F1 Added support for search functionality in help files. 9.40.1:F2 Added support for systemready.cgi which will improve re-connection of thebrowser to the web-interface after e.g. powercyle or restart of the product. 9.40.1:F3 Added support for average bitrate control (ABR). 9.40.1:F4 Added support for automatic firmware rollback verfication. The user can chose toselect this option prior to performing an firmware upgrade. When chosen, theproduct will perform the upgrade and then wait a pre-defined time for the userto acknowledge the upgrade in the web-interface. If not acknowledged in time,the product will rollback to its previous firmware. 9.40.1:F5 Added support for the possibility to configure a secondary NTP server in web- interface under Settings -> System -> Date & Time or via VAPIX Time API. 9.40.1:F6 Removed the root users default password in factory defaulted firmware. Thepassword of the root user must be set first in order to initialize VAPIX andONVIF interfaces to allow further configuration.This change only affects products in its factory defaulted state, products thatare already deployed in production systems are not affected by this update untilfactory defaulted. For more information please seehttps://www.axis.com/support/faq/FAQ116429. 9.40.1:F7 Added support for uploading custom firmware certificates in the web- interfaceunder Settings -> System -> Security in order to allow the Axis product toaccept AXIS developer firmware during firmware upgrade. 9.40.1:F8 Added support for millisecond timestamps in JPEG header. 9.30.1:F1 Added an API for mDNS-SD. 9.30.1:F2 TLS1.0 and TLS1.1 is now disabled by default. 9.30.1:F3 Added support for source-specific multicast (SSM) via http://ip-address/axis- media/ssm/media.amp.The following parameters need to be configured prior to initiating a videostream via SSM:Network.RTP.R#.VideoAddressNetwork.RTP.R#.VideoPortNetwork.RTP.R#.AudioAdressNetwork.RTP.R#.AudioPort 9.30.1:F4 Added support for TLSv1.3. 9.30.1:F5 The classic GUI has been deprecated and is now removed to increase overall cybersecurity level. 9.30.1:F6 Upgraded Apache to version 2.4.39 to increase overall minimum cyber securitylevel. 9.30.1:F7 Updated Video Motion Detection to version 4.3.5. 9.30.1:F8 It is now possible to upload .PFX formatted certificates with a total size of102400 bytes. The previous limit was 1/10 of it. 9.30.1:F9 Added support for "Wait at least time x" before re-running an configured actionrule. 9.20.1.1:F1 Firmware is now signed by AXIS to increase overall minimum cybersecurity level.More information about Signed Firmware can be found herehttps://www.axis.com/support/faq/FAQ116424. 9.20.1.1:F2 Upgraded Apache to version 2.4.38 to increase overall minimum cyber securitylevel. 9.20.1.1:F3 Updated Video Motion Detection to version 4.3.4. 9.20.1.1:F4 Added support for signed ACAP applications. 9.20.1.1:F5 Updated OpenSSL to version 1.1.1a to increase overall minimum cyber securitylevel. 9.10.1:F1 The following legacy VAPIX parameter have been removed due to non- usage:Network.DHCP.FqdnNetwork.DHCP.IPCheckEnabledNetwork.DHCP.RetriesNetwork.DHCP.StoreIPAddresseth0Network.DHCP.StoreIPAddresseth1Network.DHCP.Timeout 9.10.1:F2 Updated Video Motion Detection to version 4.3.3. 9.10.1:F3 Upgraded Apache to version 2.4.37 to increase overall minimum cyber securitylevel. 9.10.1:F4 Firwmare Recovery will also rollback the previous state of applications (ACAPs)now. Corrections in 9.80.1 ================================================================================ 9.80.1:C1 Corrected an issue that caused the device to respond with "false" for WSPullPointSupport during ONVIF Get Capabilities request. 9.80.1:C2 Corrected an issue causing intermittent disconnections to the camera. 9.80.1:C3 Corrected an issue that caused the network settings to reset on rare occasions when the device was power-cycled. Corrections in 9.70.1.5 ================================================================================ 9.70.1.5:C1 Improved system stability. 9.70.1:C1 Improved video streaming robustness in unstable network environments. 9.70.1:C2 Corrected a streaming issue that caused the RTSP server to omit the RTP-info header on rare occasions. This correction was already included in 9.60 but was missed in the release notes. 9.70.1:C3 Improved cyber security by adding the possibility to disable Web-Service Discovery (WS-Discovery). 9.70.1:C4 Corrected an issue that caused the EAP-START package not to be sent during IEEE 802.1x port authentication upon network link state change. 9.70.1:C5 Corrected an issue that removed information about recipients in the server report. 9.70.1:C6 Corrected a streaming issue affecting RTSP tunneled via HTTPs. 9.70.1:C7 Corrected an issue with streaming H.264 using Axis T8705 with User Data enabled. 9.70.1:C8 Corrected Vendor class identifier for DHCP negotiation. 9.60.1:C1 Corrected an issue that caused the HTTP recipient URL to be cropped. 9.60.1:C2 Corrected the following security vulnerabilities: CVE-2019-13377 CVE-2019-16275 9.50.1:C1 Improved Tampering Detection. 9.50.1:C2 Corrected an issue that could cause the web-interface to freeze upon action ruleconfiguration with Fence Guard. 9.50.1:C3 Improved recording robustness in the event of temporary storage loss. 9.50.1:C4 Increased the limit of concurrent HTTP requests for I/O related VAPIX commandsfrom 4 to 10. 9.50.1:C5 Corrected an issue that caused the stream to be mirrored on the y-axis insteadof the x-axis when 90 or 270 degree rotation was configured. 9.50.1:C6 The deprecated parameter HTTPS.AllowSSLV3 has been removed completely now. 9.40.1:C1 Removed a unecessary warning text for a user when setting up a action rule thatrequires a stream profile while it is actually already in place. 9.40.1:C2 Corrected an issue that made it possible to add a action rule recipient withoutnice-name via API. 9.30.1:C1 Corrected an issue that caused the FA54 to be restarted after Queue monitor hasbeen upgraded to version 2.4.2. 9.30.1:C2 Corrected an issue that makes the text overlay visible in any resolution If thetext overlay is placed in the upper right, lower left or lower right corner. 9.30.1:C3 Corrected an issue that prevented the user from exporting recordings when thecamera was configured to Alaska timezone. 9.30.1:C4 Corrected an issue that prevented the user to play recordings as a viewer. 9.30.1:C5 Extended the charater limits for query string suffix in action rules in order toallow for longer URLs. 9.20.1.1:C1 Corrected an issue that could cause the camera to get unresponsive when twoclients are streaming over multicast using the same streaming parameters. 9.10.1:C1 Corrected an issues that could cause an incorrect error message when testingHTTP recipient. 9.10.1:C2 Increased the character limit for certificate IDs from 32 to 128 characters. 9.10.1:C3 Corrected an issue that caused RTSP client timeout to be delayed. 9.10.1:C4 Corrected an issue that caused an HTTP-recipient based action rule to fail whenthe response from the server excluded the textual phrase (Example: HTTP 200).This will work now. 9.10.1:C5 Corrected an issue that caused image quality degradation when a snapshot wastaken via VAPIX. 9.10.1:C6 Corrected an issue that caused the temperature information delivered via SNMPOID to be corrupted. Known Bugs/Limitations ================================================================================ 9.70.1:L1 It is not possible to upgrade the product from 9.60 to any other release while having SOCKS proxy configured in the product. 9.70.1:L2 When upgrading from 6.55.X it is recommended to first upgrade to 8.40 and then 9.70.1. 9.40.1:L1 There might be event settings available that is not applicable to the productwith the current setup. 9.40.1:L2 The live view resolution for quad view will be 640x480 resolution if a thermalsensor is connected to port 1 regardless of the configured resoltuion. 9.30.1:L1 There might be features currently explained in the help files that may not besupported by the camera. 9.10.1:L1 It is recommended to perform firmware recovery to rollback the products firmwareto a previous version.Downgrading the products firmware through the usual firmware upgrade process cancause configuration and ACAP loss. It is recommended to perform a factorydefault afterwards. 9.10.1:L2 Parts of the privacy mask may become invisible in rare occasions duringconfiguration. If this happens, please try to modify the mask slightly. Supported AXIS VAPIX API Image Resolutions for FA54 ================================================================================ Resolution Exceptions Capture mode ------------ ------------ -------------- 1920x1080 2) 3) 4) 1280x720 2) 3) 4) 1024x768 2) 3) 4) 1024x640 2) 3) 4) 800x600 2) 3) 4) 800x500 2) 3) 4) 800x450 2) 3) 4) 640x480 2) 3) 4) 640x400 2) 3) 4) 640x360 2) 3) 4) 480x360 2) 3) 4) 480x300 2) 3) 4) 480x270 2) 3) 4) 384x288 4) 320x240 4) 240x180 4) 208x156 4) 176x144 4) 160x120 4) 1400x1050 1) 2) 3) 960x540 1) 2) 3) 768x576 1) 2) 3) 720x576 1) 2) 3) 704x576 1) 2) 3) 704x480 1) 2) 3) 704x288 1) 2) 3) 704x240 1) 2) 3) 384x288 1) 2) 3) 352x288 1) 2) 3) 4) 352x240 1) 2) 3) 4) 320x240 1) 2) 3) 320x200 1) 2) 3) 320x180 1) 2) 3) 240x180 1) 2) 3) 192x144 1) 2) 3) 4) 176x144 1) 2) 3) 176x120 1) 2) 3) 4) 160x120 1) 2) 3) 160x100 1) 2) 3) 160x90 1) 2) 3) 80x60 1) 2) 4) 80x50 1) 2) 3) 1) Not visible in web user interface 2) Available on Quad channel 3) 1080p 1920x1080 (16:9) @ 30/25fps 4) Thermal 208x156 (4:3) @ 9fps