FIRMWARE RELEASE NOTE
=====================

Products affected:        M3104-L/-LVE/M3105-L/-LVE

Release date:             2018-11-28

Release type:             Production

Firmware version:         8.50.1

Preceding release:        8.40.1

--------------------------------------------------------------------------------

Upgrade instructions
====================

Upgrade the firmware according to the instructions given at
https://www.axis.com/ca/en/support/tecnical-notes/how-to-upgrade 
or howtoupgrade.txt, which is included in the firmware folder.


New features in 8.50.1
================================================================================

8.50.1:F1
Updated Apache to version 2.4.35 to increase overall minimum cyber security
level.

8.50.1:F2
Added support for ONVIF Profile T.

8.50.1:F3
Added support for API Discovery Service that allows a device to retrieve
information of the products supported APIs via http://ip-address/axis-
cgi/apidiscovery.cgi.

It is recommended to use the API Discovery Service as new functionalities and
APIs will be made available on regular basis in future firmware releases. More
information can be found in our VAPIX library on https://www.axis.com/vapix-
library

8.50.1:F4
AXIS Video Motion Detection 4.3.2 is now pre-installed.


Features in 8.40.1
================================================================================

8.40.1:F1
Renamed "Browser Stream Statistics" to "Client Stream Information". The Client
Stream Information are available in the web-interface of the camera.

8.40.1:F2
Updated apache webserver to version 2.4.33 to increase overall minimum cyber
security level.

8.40.1:F3
Added support for AES-CBC 256-bit SD card encryption.

8.40.1:F4
AXIS Video Motion Detection 4.2.5 is now pre-installed.

8.40.1:F5
Updated help files with more detailed information about SMB and Certificate
support in AXIS products.

8.40.1:F6
Added a new section "Snapshot of current CPU utilization" that prints
information about CPU utilization and memory consumption of processes in the
server report.

8.40.1:F7
Changed the default timeout of HTTP-Recipient based action rules from 10s to
120s to compensate for unstable networks or slow clients. After the timeout is
reached, the action rule will be re-tried.

8.30.1:F1
Added the possibility for the user to share anonymous usage data with AXIS
developers.

8.30.1:F2
Added support for automatically negotiating the preferred SMB protocol version
with SMB 2.1 or higher in order to increase the overall minimum cybersecurity
level. Please refer to the follwing FAQ for more information ->
https://www.axis.com/support/faq/FAQ116392.

In case SMB 1.0 or SMB 2.0 is required due to compatibility issues, we recommend
setting the Extra Mount Options in PlainConfig -> Storage to a specific
version"vers=x.y" (e.g vers=1.0 or vers=2.0). Please note that there are two
Storage groups that are related to a mounted network share (normally Storage S1
and Storage S2) and both of them need to have the correct version in Extra Mount
Options.

8.30.1:F3
Updated OpenEmbedded to version Poky Rocko to increase overall cyber security
level.

8.30.1:F4
Updated the maximum number of recipients for action rules to 20 from 10.

8.30.1:F5
Changed the default setting of SRTP to disabled in order to reduce the number of
ports opened by default.

8.30.1:F6
AXIS Video Motion Detection 4.2.4 is now pre-installed.

8.30.1:F7
Prepared support for signed firmware to increase overall cyber security level.
It is planned that the product will only accept AXIS security-signed firmware
starting in Q1/Q2 2019 and onwards.

8.20.1:F1
The possibility to edit scripts in camera has been disabled per default in order
to increase minimum cyber security level.

8.20.1:F2
Updated AXIS Video Motion Detection to version 4.2.1.

8.20.1:F3
Updated NTP server (openntpd) to version 6.2p3.

8.20.1:F4
Added support for showing hidden resolutions via API. The parameter
Properties.Image.ShowSuboptimalResolutions has been added which will, when
enabled, show all of the products supported resolutions.

8.10.1:F1
VMD (Video Motion Detection) is updated to version 4.2.


Corrections in 8.50.1
================================================================================

8.50.1:C1
Improved streaming performance when streaming multiple video streams in
parallel.

8.50.1:C2
Improved streaming stability for
uncompressed (Compression=0) mjpeg video streams.

8.50.1:C3
When the camera is restored, the time zone is not saved meaning that it will be
set to GMT 0.

8.50.1:C4
Corrected an issue that produced an error log regarding insufficient calibration
data.

8.50.1:C5
Corrected an issue that prevented the user from receiving the correct recording
list in AXIS Companion in combination with view areas or multi-sensor products.

8.50.1:C6
Corrected an issue that prevented the user to video stream to two multicast
destinations with the same port range.

8.50.1:C7
Corrected an issue that could cause incorrect snapshot resolutions on view
areas.

8.50.1:C8
Updated to OpenSSL version 1.0.2p to increase overall minimum cyber security
level.

8.50.1:C9
Patched security vulernability CVE-2018-17182 to increase overall minimum cyber
security level.

8.50.1:C10
Patched the following security vulnerabilities to increase overall minimum cyber
security level:

CVE-2018-10876 - CVE-2018-10877
CVE-2018-10878 - CVE-2018-10879
CVE-2018-10880 - CVE-2018-10881
CVE-2018-10882 - CVE-2018-10883

8.50.1:C11
Corrected an issue that corrupted the file integrity of a JPEG image without any
further impact to the visible image quality.

8.50.1:C12
Corrected an issue that prevented the user from uploading a certificate that
contains "Bag Attributes" before and after the actual certificate content.


Corrections in 8.40.1
================================================================================

8.40.1:C1
Corrected an issue with incorrect handling of ACAPs after camera boot.

8.40.1:C2
Corrected an issue that prevented the user from creating a Recipient when a "-"
sign was present in the host name.

8.40.1:C3
Corrected an issue that could cause the configuration file upload from ADM to
camera to fail.

8.40.1:C4
Corrected an issue that prevented the user to export recordings in the desired
time range.

8.40.1:C5
Corrected an issue that would let the camera become unresponsive.

8.40.1:C6
Patched security vulnerability CVE-2018-5390 to increase overall minimum cyber
security level.

8.40.1:C7
Patched security vulernability CVE-2018-14526 to increase overall minimum cyber
security level.

8.40.1:C8
Corrected an issue that prevented the user from formatting SD cards and the web-
interface to show incorrect information about network share status in Settings
-> System -> Storage.

8.40.1:C9
Added selection boxes for disabling TLSv1.0 and TLSv1.1 in Settings -> System ->
PlainConfig -> HTTPS to enforce the highest possible TLS version for HTTPS-based
connections.

8.40.1:C10
Corrected an issue that could cause a network share to become read-only.

8.40.1:C11
Corrected an issue that prevented the overlay to show the correct state of
inputs when toggling.

8.40.1:C12
Corrected an issue in the ACAP framework that caused installed ACAPs to become
unresponsive and the Apps tab not to be shown correctly.

8.40.1:C13
Corrected an issue that let the network share test under Events -> Recipient
fail when a NAS was connected that only supports SMB 1.0 or SMB 2.0.

8.40.1:C14
Corrected an issue that caused AXIS Perimeter Defender or SafeZoneEdge to stop
working after a firmware upgrade.

8.40.1:C15
Corrected an issue that caused the certificate signing request not to have an LF
(alt. CR-LF) every 64th character causing the certificate considered not being
valid e.g. when using symantec certificates.

8.30.1.1:C1
Corrected an issue that caused the web-interface to show either none or wrong
information
about the network share status after mounting a share in Settings -> System ->
Storage.
Previously the user needed to refresh the browser page via F5 in order to get
the correct
information shown.

8.30.1.1:C2
Corrected an issue that caused AXIS Perimeter Defender or SafeZoneEdge to stop
working
after a firmware upgrade.

8.30.1.1:C3
Corrected an issue in the ACAP framework that caused installed ACAPs to become
unresponsive on rare occasions and the Apps tab to not be shown correctly.

8.30.1.1:C4
#Affected Products #M5525-E
Corrected an issue that prevented the camera from finding good
focus on rare occasions.

8.30.1:C1
Corrected an issue that could display wrong possible maximum FPS in Settings ->
Image.

8.30.1:C2
Corrected an issue that could cause the camera to get stuck in night mode when
WDR setting changed.

8.30.1:C3
Corrected an issue that let the camera become unresponsive on rare occasions.

8.30.1:C4
Corrected an issue that caused the camera to become unresponsive on rare
occasions when running ACAPs without specified ApplicationId.

8.30.1:C5
Increased user awareness when converting legacy overlays to dynamic overlays. A
restart of ongoing recordings is required after overlay conversion.

8.30.1:C6
Corrected an issue with the Axis event handling interface when deactivating
events.

8.30.1:C7
Updated OpenSSL to version 1.0.2o to increase overall minimum cyber security
level.

8.20.1:C1
Corrected an issue that made it necessary for the user to refresh manually the
storage configuration page in the web-interfce to be updated e.g. when a storage
has been disconnected from the camera.

8.20.1:C2
Corrected critical vulnerability ACV-128401.

8.20.1:C3
Corrected an issue where the camera could get stuck in night mode.

8.20.1:C4
Corrected an issue that caused the image to be cut off in full screen mode in
the live view when rotated 90 or 270 degrees.

8.20.1:C5
Corrected an issue with the AXIS event handler registration for ADP partners.

8.20.1:C6
Corrected an issue that caused the camera to become unreachable via link local
address in the network when connecting client was in another subnet.

8.20.1:C7
Corrected an issue that caused the camera to stop streaming in rare occasions.

8.20.1:C8
Corrected an issue that made it necessary to login twice when connecting to the
web-interface using Microsoft Edge.

8.20.1:C9
Corrected an issue that prevented trigger data to be inserted in every I-frame
and when motion detection triggers.

8.20.1:C10
Corrected an issue when testing multiple email recipients.

8.20.1:C11
Corrected an issue where e-mail recipients could be wrongly formatted.

8.20.1:C12
Corrected an issue that prevented the user from taking image snapshots in H264
when using the Safari web browser.

8.20.1:C13
Corrected an issue that prevented the use of the whole sensor width for some
aspect ratios.

8.20.1:C14
Corrected an issue that could cause synchronization to AVHS to fail.

8.10.1.1:C1
Corrected a issue that let the camera become unresponsive in rare occasions when
connected
to an AVHS system.

8.10.1:C1
Corrected an issue with MJPEG images becoming corrupted in rare occasions.

8.10.1:C2
Corrected security vulnerability CVE-2017-9798.

8.10.1:C3
Corrected an issue when creating user accounts in Microsoft Edge 38 or IE 11.

8.10.1:C4
Corrected an issue that could cause noise in images in rare occasions.


Known Bugs/Limitations
================================================================================


8.40.1:L1
It is recommend to refresh the browser with F5 after doing a FW upgrade from FW
6.xx to 8.xx or higher in order to show all the new settings in the web-
interface.

8.30.1.1:L1
When using the Edge or Firefox web browser automatic license installation
doesn't work as expected.

8.30.1.1:L2
Some parts of the web-interface may not be fully translated.

8.30.1.1:L3
It is not possible to update the product using Genetec 5.7 SR2. Genetec will
provide a patch in 5.7 SR3.

8.20.1:L1
When downgrading a firmware the static IP configuration is lost. Axis recommends
to perform a factory reset after downgrading.

8.20.1:L2
When using an iOS device and Chrome or Safari web browser it is not possible to
switch from viewer to administrator or operator.

8.10.1.1:L1
A user might experience frame drops in rare conditions when video streaming in
Firefox 57 due to specific computer hardware. It is recommended to use Google
Chrome instead.

8.10.1.1:L2
It is not possible to to rotate high resolution video streams when using Firefox
browser in Windows when playing H.264.

8.10.1.1:L3
When performing a firmware rollback to a version older than 5.90 the database on
an SD-card or the network share will be incompatible and it needs to be
reformatted.

8.10.1.1:L4
When the camera is restored, the time zone is not saved meaning that it will be
set to GMT 0.


Supported AXIS VAPIX API Image Resolutions for M3104-L/-LVE/M3105-L/-LVE
================================================================================

Resolution  Exceptions
==========  ==========

1920x1080   2)
1280x960    2)
1280x800    2)
1280x720
1024x768    2)
1024x640
800x600
800x500
800x450
640x480
640x400
640x360
480x360
480x300
480x270
320x240
320x200
320x180
240x180
240x135     2)
160x120
160x100
160x90

768x576     1)
720x576     1)
704x576     1)
704x480     1)
704x288     1)
704x240     1)
384x288     1)
352x288     1)
352x240     1)
192x144     1)
176x144     1)
176x120     1)
80x50       1)

1) Not visible in web user interface
2) 1080p 1920x1080 (16:9) @ 25/30 fps