FIRMWARE RELEASE NOTE ===================== Products affected: Q6052 Release date: 2017-11-27 Release type: Production Firmware version: 7.40.1 File name: Q6052_7.40.1.bin Preceding release: 7.30.1 -------------------------------------------------------------------------------- Upgrade instructions ==================== Upgrade the firmware according to the instructions given at https://www.axis.com/ca/en/support/tecnical-notes/how-to-upgrade or howtoupgrade.txt, which is included in the firmware folder. New features in 7.40.1 ================================================================================ 7.40.1:F1 Changed the behavior of the capture mode parameter. Changing capture mode requires a reboot now. 7.40.1:F2 AXIS Motion Guard is now pre-installed. 7.40.1:F3 AXIS Fence Guard is now pre-installed. 7.40.1:F4 Support for Firmware Recovery under Settings -> System -> Maintenance. The product is saving a restore point every time the firmware is updated, allowing the user to rollback to a previous firmware and its configuration. 7.40.1:F5 Support for HTTP keep-alive connections via ONVIF. PTZ products can now be controlled via HTTP keep-alive connections. This increases PTZ control accuracy, reduces overhead communication and therefore lowers the risk for security focused network infrastructure or unstable networks to block or drop PTZ control commands. 7.40.1:F6 Support for browser stream statistics in Live View. 7.40.1:F7 Support for OPUS audio codec. The codec can be selected e.g. in the web- interface under Settings -> Audio -> Encoding or via VAPIX API. 7.40.1:F8 Updated AXIS Video Motion Detection to version 4.1.8. 7.40.1:F9 Support for Password Security Confirmation Check. To increase overall cybersecurity awareness, a user-configured password that is considered "weak" need to be confirmed actively twice by the user. Features in 7.30.1 ================================================================================ 7.30.1:F1 Noise Reduction setting has been added to Settings -> Image. 7.30.1:F2 Added a link under Settings -> Apps for the user to get fast-access to information about available ACAPs on www.axis.com/products/analytics-and-other- applications. 7.30.1:F3 The FTP Server is now disabled by default as it is not used during normal operation and may pose a security risk.The FTP Server may be enabled during advanced maintenance or troubleshooting in Settings -> System -> PlainConfig -> Network. 7.30.1:F4 Support for Brute Force Delay Protection. The product can block a client for a period of time if too many login attempts failed. Brute Force Delay Protection can be configured under System -> PlainConfig -> System -> System PreventDoSAttack. 7.30.1:F5 Support for automatic license key installation when installing an ACAP under Settings -> Apps. 7.30.1:F6 Support for SRTP (Encrypted Video Streaming) according to RFC 3711. The cameras video stream can be received via secure end-to-end encrypted transportation method only by authorized clients. 7.30.1:F7 Support for Adaptive Resolution. Adaptive Resolution is enabled per default and takes only effect when viewing live stream in the web-interface. The viewing client will receive a image resolution that is adapted or close to the viewing clients real display resolution to higher the user experience. 7.30.1:F8 Support for Zipstream Dynamic FPS - Lower Limit Support for Zipstream Dynamic GOP - Upper Limit It is now possible to further adjust and set limits for Dynamic FPS and Dynamic GOP settings and can be configured under Stream settings -> Zipstream. 7.30.1:F9 Support for Flash All/Factory Default while performing a firmware update. It is now possible to select an option that will factory default the camera after a firmware update/downgrade has been performed under Settings -> System -> Maintenance. 7.20.1:F1 Support for AXIS SD card health API. The SD card health API allows a client to track and request the health and wear-out state of an camera with AXIS Surveillance SD Card. 7.20.1:F2 Pressing "Download the server report" in System -> Maintenance will now automatically attach a snapshot of the image to the .zip file in order to simplify support. 7.20.1:F3 The functionality of enabling Axis DNS Service via control button has been disabled by default. It can be enabled again using VAPIX. 7.20.1:F4 Changed the default web server authentication from Basic and Digest to Digest only. 7.20.1:F5 Upon a factory default, the camera will generate a self-signed certificate at boot and enable HTTPS. This allows clients to use encrypted access from start. If HTTPS is to be used in daily operations, it is recommended to replace the generated self-signed certificate with a CA-signed certificate. 7.20.1:F6 Support for 24bit LPCM audio mode. 7.20.1:F7 OpenSSL has been updated to version 1.0.2k to increase overall minimum cyber security level. 7.20.1:F8 Products can list now all the supported auxiliary commands such as PTZ Test, Calibration, Speed Dry for clients asking for http:///axis- cgi/com/ptz.cgi?query=auxiliary. 7.20.1:F9 PTZ products can be controlled now via HTTP 1.1 keep-alive connections which increases PTZ control accuracy, reduces overhead communication and therefore lowers the risk for security focused network infrastructure to block PTZ control commands when controlling a PTZ camera. 7.10.1:F1 It is now possible to specify image rotation via ONVIF video source configuration 7.10.1:F2 OpenSSL version updated to 1.0.2j. 7.10.1:F3 VMD upgraded to version 4.1. 7.10.1:F4 Corrected Turkey/Istanbul timezone from GMT+2 to GMT+3. 7.10.1:F5 New web-interface with improved usability and broader support of web-clients and operating systems. For more information please see https://www.axis.com/global/en/support/technical-notes/browser-support. 7.10.1:F6 The new web-interface supports 12 different pre-installed languages which will be chosen automatically based on browser settings. Uploading individual language files is not needed anymore. Supported Languages: English - German - French - Spanish - Italian - Portugese - Polish - Russian - Japanese - Chinese (Mainland) - Chinese (Taiwan) - Korean Corrections in 7.40.1 ================================================================================ 7.40.1:C1 Corrected security vulnerability CVE-2016-2147 and CVE-2016-2148. 7.40.1:C2 Corrected an issue that let a configured overlay disappear when switching to Image or View Area Tab. 7.40.1:C3 Corrected an issue that let the camera become unresponsive in rare occasions when performing a Guard Tour together with Image Freeze functionality. 7.40.1:C4 Corrected an issue that required the user to enter login credentials when anonymous viewer is enabled. Corrections in 7.30.1 ================================================================================ 7.30.1:C1 It is now possible to fast forward/rewind to any time in a selected recording using the web interface. 7.30.1:C2 Corrected an issue when controlling a camera via NTCIP / PTZoverSNMP ACAP using absolute PAN command. Please use the latest version of the ACAP. 7.30.1:C3 Corrected security vulnerability CVE-2016-2147. 7.30.1:C4 Corrected critical vulnerability ACV-120444. 7.30.1:C5 Improved UI controls and more configuration possibilities for "Allow Slow Shutter" under Settings -> Image. 7.30.1:C6 Reduced the waiting time for receiving a video stream significantly when a 2nd client requests a video stream via multicast. 7.30.1:C7 The area zoom functionality has been removed from the web-interface. Area zoom was used to draw a rectangle in the live view to let the camera either mechanical or digital PTZ to its desired position. 7.30.1:C8 Corrected an issue that delivered E-Mails send from the camera with a wrong time stamp in the e-mail header. 7.30.1:C9 Corrected an issue that delivered E-Mails send from the camera with a wrong time zone in the e-mail header. 7.30.1:C10 Corrected an issue with FTP recipients configured with a DNS name instead of a static IP-address which caused the FTP recipient test or action rule to fail. 7.30.1:C11 Corrected an issue that let the auto focus function stop working after Autotracking had been enabled/disabled. 7.30.1:C12 Fixed a issue that let the recorded video to the computer using the Video Capture button be incorrectly displayed or unusable in some rare occasions. 7.20.1:C1 Corrected an issue that prevented the user from saving a action rule with a Email Recipient that had SSL enabled. 7.20.1:C2 Apache web server has been updated to version 2.4.25. 7.20.1:C3 Corrected a issue resulting in "503 Service Unavailable" when trying to play a recording from a camera with a specific time range via ONVIF. 7.20.1:C4 Corrected an issue with an additional sign "/" in the absolute upload path of an SFTP Recipient when saving the action rule causing it to not work correctly. 7.20.1:C5 Fixed an issue when an ONVIF client connected to the camera via digest authentication. 7.20.1:C6 Fixed critical vulnerability ACV-116267. 7.20.1:C7 Improved camera stability when recording via ONVIF profile G. 7.10.1:C1 Improved camera stability when TriggerData is used. 7.10.1:C2 Corrected a bug in the event system that prevented the camera from re-sending the SMTP notification every 10 seconds in case the receiving server reported an error. 7.10.1:C3 Corrected possibility to include SPS (Sequence Parameter Set) and PPS (Picture Parameter Set) in the stream according to ACAP documentation. 7.10.1:C4 Fixed security vulnerability CVE-2015-7547. 7.10.1:C5 Optimized Network Share polling frequency. 7.10.1:C6 Improved stability in actionengine (tcp notification). 7.10.1:C7 Fixed Security vulnerability CVE-2016-5195. 7.10.1:C8 Improved handling of day and night shift levels adjustment. 7.10.1:C9 Improved HTTP image upload stability in unstable networks. 7.10.1:C10 Improved camera stability when metadata is used. 7.10.1:C11 Improved loading of the web-interface in unstable networks. Known Bugs/Limitations ================================================================================ 7.40.1:L1 MJPEG images become corrupted in rare occasions. This will be corrected in the upcoming firmware 8.10 in Q1, 2018. Please submit a support ticket on our help desk in order to receive a preliminary solution if needed. 7.40.1:L2 The VAPIX API will always return the state of a IO-port as "input" even if it is configured as "output". 7.40.1:L3 Corrected security vulnerability CVE-2017-9798. 7.40.1:L4 It is not possible to create user accounts in Microsoft Edge 38 or IE 11. More information on recommended browsers can be found here https://www.axis.com/support/technical-notes/browser-support. 7.40.1:L5 It is not possible to receive audio encoding details in the browser stream statistics. 7.30.1:L1 Connecting to a camera will fail and result in "Unauthorized" message due to an bug in Microsoft Edge 40 browser. This will be corrected by Microsoft in the next version of Edge 41. 7.30.1:L2 An overlay text (e.g. date/time modifier) that has been configured in the classic web-interface will be still shown in the new web-interface even though a user might have disabled the overlay text there after firmware update. A user need to disable the overlay text first in the classic web-interface using http ://ip-address/index.shtml. 7.30.1:L3 IEEE 802.1x configuration does not work in Microsoft Edge. 7.20.1:L1 Recording streams to SD Card with total bit rate above 12Mbit/sec may cause missing frames/sequences. 7.20.1:L2 Videos that have been recorded using the video capture feature in live view may not be playable some media players (e.g. VLC) as it is in an fragmented MP4 format without total video duration. 7.20.1:L3 The following features in Settings -> System will be displayed in English only as for now: Certificates, ONVIF, HTTPS, IEEE 802.1x, SNMP, Events, Stream profiles and Detectors. The current chosen language will not have any affect there. 7.20.1:L4 Image Overlay can be configured for quad view (products) even though it does not have any effect. 7.20.1:L5 Overlay images or overlay text are not included in the video stream when streaming over HDMI. 7.20.1:L6 It is recommended to perform a factory default after downgrading the cameras firmware if needed. 7.20.1:L7 Features currently explained in the help files may not be supported in the camera. 7.20.1:L8 No audio support when viewing MJPEG video streams directly in the web-interface. However, a recorded video MJPEG video stream from the cameras storage can be played with audio using a 3rd party client e.g. Microsoft Windows Media Player. 7.20.1:L9 It is recommended to refresh the browser page (F5) when a OSDI zone is deleted as the control buttons (Add, Modify, Enable/Disable, Remove) will disappear after doing so. Supported AXIS VAPIX API Image Resolutions for Q6052 ================================================================================ Resolution Exceptions ========== ========== D1 720x576 2) 4) 720x480 3) 5) 4CIF 704x576 2) 4) 704x480 3) 5) 2CIF 704x288 2) 4) 704x240 3) 5) CIF 352x288 2) 4) 352x240 3) 5) QCIF 176x144 2) 4) 176x120 3) 5) D1 720x576 1) 2) 4) 720x480 1) 3) 5) 4CIF 704x576 1) 2) 4) 704x480 1) 3) 5) 2CIF 704x288 1) 2) 4) 704x240 1) 3) 5) CIF 352x288 1) 2) 4) 352x240 1) 3) 5) QCIF 176x144 1) 2) 4) 176x120 1) 3) 5) analyze 1) 1) Not visible in web user interface 2) PAL mode resolution 3) NTSC mode resolution 4) 960x720p50 5) 960x720p60