Line 6: |
Line 6: |
| | | |
| ==Changelog== | | ==Changelog== |
| + | <!--NEW_FW--> |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.3/TRB1/TRB1_R_00.07.07.3_WEBUI.bin TRB1_R_00.07.07.3]</span></b> | 2024.06.25=== |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** WebUI: fixed port advertisement change |
| + | ** <b>System</b> |
| + | *** FOTA: fixed config when upgrading from older firmware with keep settings |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2024-31950 |
| + | ** CVE-2024-31951 |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.2/TRB1/TRB1_R_00.07.07.2_WEBUI.bin TRB1_R_00.07.07.2]</span></b> | 2024.06.12=== |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Mobile: improved communication stability with eSIM |
| + | ** <b>Services</b> |
| + | *** SNMP: added bruteforce attack prevention when using SNMP v3 user |
| + | *** L2TP: improved reconnect attempt logic |
| + | ** <b>System</b> |
| + | *** SSH: removed weak SSH algorithms |
| + | *** Telnet: moved to Package Manager |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** BGP: fixed instance migration issues |
| + | *** Mobile: fixed forced APN configuration |
| + | ** <b>Services</b> |
| + | *** DMVPN: fixed duplicate NHRP map entries creation |
| + | *** OpenVPN: added fixes for the insecure tls-cert-profile option usage |
| + | ** <b>System</b> |
| + | *** IP Block: fixed blocking of UDP traffic |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2024-31948 |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/TRB1/TRB1_R_00.07.07.1_WEBUI.bin TRB1_R_00.07.07.1]</span></b> | 2024.05.03=== |
| + | ---- |
| + | * <b>New</b> |
| + | ** <b>Network</b> |
| + | *** WebUI: added ESM/EMM message notifications |
| + | *** WebUI: added internet status tracking configuration and overview widget |
| + | *** LAN: added a new IPv6 LAN status page |
| + | *** Static Leases: added a new IPv6 Static Leases page |
| + | *** WebUI: added custom domain name resolve option in “DNS” configuration page |
| + | *** Auto APN: added “uno.au-net.ne.jp” APN for “KDDI” operator |
| + | *** Auto APN: added 'eprivate010.tisparkle.com' APN for “Sparkle” operator |
| + | *** QoS: added mobile interface select option |
| + | *** Mobile: improved connection establish time for uqmi protocol |
| + | *** VRF: added initial Virtual Routing and Forwarding support |
| + | ** <b>Services</b> |
| + | *** Post/Get: added I/O invert support |
| + | *** DLMS Client: added persistent TCP connections |
| + | *** Events Reporting: added unexpected shutdown event |
| + | *** Modbus Client: added 64bit data types |
| + | *** IPerf3: added iPerf3 to Package Manager |
| + | *** DNP3 Outstation: added I/O objects |
| + | *** TR-069: added PCI, LAC, TAC, EARFCN and Neighbour cells data to Device.MobileInfo node |
| + | *** Hotspot: added domain and subdomain options for external landing page |
| + | ** <b>System</b> |
| + | *** WebUI: added the ability to generate random passwords for password input fields |
| + | *** WebUI: added reset to “Factory defaults” option |
| + | *** System: changed firmware certificate verification tool |
| + | *** IP Block: added time-based login attempt blocking |
| + | *** WebUI: added firmware update notification support |
| + | *** PAM: added the ability to set port for TACACS+ |
| + | *** Logging: added multiple remote syslog servers support |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Static Leases: added possibility to use MAC with wildcard |
| + | *** WebUI: added ability to disable modem update notifications |
| + | *** Topology: changed network devices scanning application |
| + | *** WebUI: improved design of Status - LAN page |
| + | *** DHCP: simplified DHCP configurations in other pages and moved full DHCP configuration to a separate page |
| + | *** DHCP: removed default disabled server configuration for WAN interface |
| + | *** WebUI: simplified data entry of DNS forwardings by separating hostname and IP address fields |
| + | *** BGP: added Virtual Routing and Forwarding (VRF) support |
| + | *** BGP: added multiple BGP instance support |
| + | *** WebUI: adjusted responsive design breakpoints |
| + | *** Dnsmasq: updated dnsmasq to version 2.89 |
| + | *** WebUI: added additional field for warning threshold to allow entering value as percentage in Mobile Data Limit section |
| + | *** Mobile: improved mobile services stability when SIM card is lost during SMS sending |
| + | *** Mobile: updated bridge/passthrough mode logic to flush ARP and add static ARP entry if MAC is specified |
| + | *** Mobile: improved SIM switch logging and protection on failure to acquire data |
| + | *** WebUI: added partial data loading to APN database page |
| + | *** Mobile: improved SMS sending timeouts during network issues |
| + | *** Mobile: improved connection handling when data limit is reached |
| + | *** Mobile: added metric to default gateway when using passthrough mode |
| + | *** WebUI: added validation for 2 same APNs |
| + | *** WebUI: updated Band selection field to show duplex modes in Mobile General page |
| + | ** <b>Services</b> |
| + | *** Wireguard: added option to bind tunnel to a specific interface |
| + | *** OPC UA Client: added limits (10 servers, 20 groups, 50 nodes per server, 50 values per group) |
| + | *** DLMS Client: increased maximum count of connection sections to 30 |
| + | *** DLMS Client: added short name referencing |
| + | *** SNMP: set strict default community access when IPv6 address is used |
| + | *** SNMP: improved sysName OID to set device's hostname |
| + | *** OpenVPN: added the bridge option for selecting the network device to be bridged with |
| + | *** OpenVPN: added possibility to create more than one TAP client |
| + | *** SSTP: updated package version to 1.0.19 |
| + | *** Mosquitto: updated package version to 2.0.17 |
| + | *** Auto Reply: added available SMS message parameters to "Message text" input |
| + | *** Modbus Client: allow using diacritics in SMS alarms |
| + | *** Hotspot: moved MAC blocking option from Access Control to Hotspot page |
| + | *** WebUI: added MAC authentication support when using RADIUS authentication mode |
| + | *** WebUI: moved licenses to footer |
| + | ** <b>System</b> |
| + | *** WebUI: added more strict password requirements for restoring backup |
| + | *** SMTP: added option to either not verify SMTP server or upload SMTP server's CA file to verify authenticity |
| + | *** WebUI: Added the ability to choose the ROOT CA when using certificates from the device |
| + | *** WebUI: unified time format to ISO8601 across the entire WebUI |
| + | *** WebUI: added ability to choose imported certificate and key as 'Server certificate' and 'Server key' in 'Access Control' |
| + | *** WebUI: added 'Hosts' and 'IP Addresses' options for 'Simple' certificate generation and certificate signing |
| + | *** WebUI: changed firmware update option to server as a default option |
| + | *** WebUI: improved first login password change logic |
| + | *** Certificates: updated Root CA certificates |
| + | *** GPL: added offline package preparation command for GPL builds |
| + | *** Kernel: updated version to 5.4.269 |
| + | *** Libcap: updated package version to 2.69 |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** Topology: fixed showing interfaces with assigned VLAN |
| + | *** WebUI: fixed static routing creation for GRE instance |
| + | *** Network: fixed DHCPv4 relay mode enabling |
| + | *** Mobile: fixed PIN code set after modem restart |
| + | *** Mobile: fixed an issue where using SIM change command on one SIM slot modems would reset connection |
| + | *** Mobile: fixed an issue where message storage would not be checked correctly |
| + | *** Mobile: fixed temperature value sometimes returning 0 |
| + | *** Mobile: fixed denied roaming flag set |
| + | *** Mobile: fixed issue where RSSI value was displayed as 0 when using 2G/3G network types |
| + | ** <b>Services</b> |
| + | *** Modbus Client: allow using negative floating point values in requests |
| + | *** Azure IoT Hub: fixed Data to Server minor WebUI dependency bugs |
| + | *** Data to Server: fixed DLMS data formating |
| + | *** Data to Server: fixed Network link state data display |
| + | *** DLMS Client: fixed segfault while reading profile generic COSEM object |
| + | *** DLMS Client: fixed profile generic entries reading |
| + | *** DLMS Client: fixed application memory allocation issues |
| + | *** SSTP: fixed route adding when default route is enabled |
| + | *** SNMP: fixed VLAN OID naming |
| + | *** OpenVPN: added fixes for instance status tracking functionality |
| + | *** OpenVPN: resolved uptime counting issues |
| + | *** PPTP: fixed PPTP instance deletion problem |
| + | *** UPnP: updated package version to 2.3.4 |
| + | *** Azure IoT Hub: fixed 'contentType' telemetry message parameter |
| + | *** Hotspot: fixed password validation for locally created users and signed-up users |
| + | *** Hotspot: fixed session invalidation after deleting registered user |
| + | *** Hotspot: fixed SMS OTP password reuse |
| + | *** Hotspot: fixed firewall rule creation |
| + | *** Modbus Client: fixed issue where service freezes when SMS alarm is sent |
| + | *** WebUI: fixed data loading error in Input/Output > Post/Get page |
| + | *** MQTT Publisher: fixed device/router topic naming bug |
| + | *** SNMP: fixed mobile connection uptime display |
| + | ** <b>System</b> |
| + | *** NTP Client: fixed ‘Count of time synchronizations’ execution when synchronization to mobile operator is chosen |
| + | *** Package Manager: fixed spinner message when restarting network after package upload or download |
| + | *** Package Manager: fixed supported devices check when installing a package from server |
| + | *** WebUI: fixed language install from uploaded package after upgrade with keep settings |
| + | *** WebUI: fixed an issue when a user was not logged out after changing profiles |
| + | *** Telnet: fixed segmentation fault during concurrent connections |
| + | *** CLI: fixed enter key issue on mobile chromium based browsers |
| + | *** System Users: fixed SSH session close after deleting user or disabling SSH access |
| + | *** Profiles: fixed profile migration with installed packages |
| + | *** PAM: updated libpam to version 1.6.0 |
| + | *** WebUI: fixed Hotspot log page table search functionality |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2022-4603 |
| + | ** CVE-2022-23308 |
| + | ** CVE 2022-45061 |
| + | ** CVE-2023-0466 |
| + | ** CVE-2023-6129 |
| + | ** CVE-2023-7042 |
| + | ** CVE 2023-24329 |
| + | ** CVE 2023-27043 |
| + | ** CVE-2023-42366 |
| + | ** CVE-2023-46218 |
| + | ** CVE-2023-46219 |
| + | ** CVE-2023-46752 |
| + | ** CVE-2023-46753 |
| + | ** CVE-2023-48795 |
| + | ** CVE-2022-4269 |
| + | ** CVE-2024-2397 |
| + | ** CVE-2024-25062 |
| + | ** CVE-2024-27913 |
| + | ** CVE-2024-22365 |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/TRB1/TRB1_R_00.07.06.10_WEBUI.bin TRB1_R_00.07.06.10]</span></b> | 2024.04.04=== |
| + | ---- |
| + | * Global changelog for <b>R_00.07.06.10</b> - [[Global RUTOS changelog#R_00.07.06.10|LINK]] |
| + | ===<b>TRB1_R_00.07.06.8</b> | 2024.03.25=== |
| + | ---- |
| + | * Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control. |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/TRB1/TRB1_R_00.07.06.6_WEBUI.bin TRB1_R_00.07.06.6]</span></b> | 2024.03.04=== |
| + | ---- |
| + | * Global changelog for <b>R_00.07.06.6</b> - [[Global RUTOS changelog#R_00.07.06.6|LINK]] |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/TRB1/TRB1_R_00.07.06.5_WEBUI.bin TRB1_R_00.07.06.5]</span></b> | 2024.02.21=== |
| + | ---- |
| + | * Global changelog for <b>R_00.07.06.5</b> - [[Global RUTOS changelog#R_00.07.06.5|LINK]] |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.4/TRB1/TRB1_R_00.07.06.4_WEBUI.bin TRB1_R_00.07.06.4]</span></b> | 2024.01.18=== |
| + | ---- |
| + | * Global changelog for <b>R_00.07.06.4</b> - [[Global RUTOS changelog#R_00.07.06.4|LINK]] |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.2/TRB1/TRB1_R_00.07.06.2_WEBUI.bin TRB1_R_00.07.06.2]</span></b> | 2024.01.04=== |
| + | * <b>Fix</b> |
| + | ** <b>Services</b> |
| + | *** Fixed issue with NTPclient zombie processes |
| + | ** <b>System</b> |
| + | *** Fixed device resetting to a different password instead of unique default password inscribed on the device. |
| + | |
| + | ===<b>TRB1_R_00.07.06</b> | 2023.12.20=== |
| + | <b>Note:</b> Firmware version <i>TRB1_R_00.07.06</i> was removed due to an issue when resetting the device failed to revert the password to the specified unique code inscribed on the device. |
| + | ---- |
| + | * <b>New</b> |
| + | ** <b>Network</b> |
| + | *** Enabled IPv6 by default for mobile interfaces |
| + | *** Added operator blacklisting and whitelisting based on mobile country code |
| + | *** Added SIM card not inserted event in Events Log |
| + | ** <b>Services</b> |
| + | *** Added OPC UA Server |
| + | *** Added the ability to set port for TACACS+ in PAM service |
| + | *** Added switch to enable using root certificate authority for MQTT alarms in Modbus Client services |
| + | *** Added new alarm action "Ubus event" in Modbus Client services |
| + | *** Added new input "Modbus alarms" in Data to Server service |
| + | *** Added wget ping subtype support in Events Reporting service |
| + | *** Added new I/O SNMP OID that returns numeric I/O state |
| + | *** Added new Post/Get service action "mobile_sim_pin" for changing used SIM PIN code on the device |
| + | ** <b>WebUI</b> |
| + | *** Added Tailscale VPN support |
| + | *** Renewed user interface design |
| + | *** Added network interface name change functionality |
| + | *** Added indication when new modem firmware is available |
| + | *** Added mobile connection establishment display in mobile status page |
| + | *** Added default value for "Reset threshold" field in Low Signal Reconnect feature |
| + | ** <b>System</b> |
| + | *** Added ability to enable/disable SSH access for specific users in System Users |
| + | *** API support |
| + | |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Disabled operator scan when SIM card is not inserted |
| + | ** <b>Services</b> |
| + | *** Expanded GRE VPN keep alive functionality to disable routes from unreachable tunnel |
| + | *** Added PKCS#12 certificate container authentication method in IPsec VPN |
| + | *** Added TLV message_payload support for SNMP service |
| + | *** Added Purple.ai configuration profile |
| + | *** Added possibility to assign mobile interface in SQM service |
| + | *** Added additional anonymous phone number validation in Mobile Utilities service |
| + | *** Added "N/A" signal strength response in DNP3 service if SIM card is not inserted |
| + | ** <b>WebUI</b> |
| + | *** Improved Events Log page loading by adding asynchronous pagination |
| + | *** Removed requirement for Diffie-Hellman parameters in OpenVPN service |
| + | *** Added improvements for creating OpenVPN IPv6 configurations |
| + | *** Added auto redirect after changing router's IP address or port |
| + | *** Added "Interface" dropdown for interfaces selection in Wake on LAN service |
| + | *** Increased Data to Server service MQTT topic length limit to 65535 characters |
| + | *** Added OSPF external routes section to Status page |
| + | *** Moved device menu entry “Reboot” to header menu |
| + | *** Added indication in Overview, Status -> Mobile and WAN pages when mobile data limit is reached |
| + | *** Updated Operator state field to show if modem is in limited service |
| + | *** Combined Mobile Usage day, week, month and total pages into one |
| + | *** Updated Realtime data -> Mobile signal page design to show all available modems and their bands data in one graph |
| + | *** Added message when SIM card requires PIN/PUK code in Status -> Mobile page |
| + | ** <b>System</b> |
| + | *** Added Mosquitto CVE patch 2023-28366 |
| + | *** Added Mosquitto CVE patch 2023-3592 |
| + | *** Updated cURL version to 8.4.0 |
| + | *** Updated kernel version to 5.4.259 |
| + | *** Added RMS data display to generated troubleshoot |
| + | *** Added downloaded Package Manager packages list to generated troubleshoot |
| + | *** Added process activity load list to generated troubleshoot |
| + | *** Changed default OPKG feed to use Teltonika's URL |
| + | |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** Fixed DMVPN firewall rule creation issues |
| + | *** Fixed mobile service crash due to buffer overflow while reading partially overwritten SMS |
| + | *** Fixed an issue with Manual APN connection making attempts too rapidly |
| + | *** Fixed deny data roaming functionality when transitioning between roaming and home operator network |
| + | *** Fixed network disconnection on mobile network detach and DHCP lease loss situations |
| + | *** Fixed VoLTE configuration after modem reboot |
| + | *** Fixed Mobile interface bridge and passthrough mode connectivity loss |
| + | *** Fixed an issue where rarely PIN code would get removed after SIM switch |
| + | *** Fixed mobile operator list being not updated after changes in WebUI |
| + | ** <b>Services</b> |
| + | *** Fixed SSH module enable in PAM service |
| + | *** Added minimum free space check when saving logs to flash in Logging service |
| + | *** Fixed "Set multiple coils" function sending too many bytes in Modbus Client services |
| + | *** Fixed multiple Events Reporting messages being sent when Firewall configuration is changed |
| + | *** Fixed VRRP instances advertising wrong virtual IPs |
| + | *** Added Hotspot information in SNMP MIB file |
| + | *** Fixed registered Hotspot Local Users showing random username |
| + | *** Fixed selection of MAC Auth for LAN interfaces in Hotspot service |
| + | *** Fixed inconsistent Hotspot login behaviour when using MAC Auth with Password |
| + | *** Fixed instance shutdown after last local user deletion |
| + | *** Fixed RMS Hotspot data display for devices without WiFi support |
| + | *** Fixed an issue when Call Utilities rules would be active on data only modems |
| + | *** Fixed Cumulocity app not sending any telemetry data |
| + | *** Fixed Call Utilities failure when caller id is hidden during a call |
| + | *** Fixed default profile SMS Utilities I/O status rule configuration in Profiles functionality |
| + | ** <b>WebUI</b> |
| + | *** Fixed side menu style issues when Japanese language is used |
| + | *** Fixed displaying of vendor names in Topology page |
| + | *** Fixed language packs being selectable when still in Package Manager queue |
| + | *** Added ability to configure IPv6 BGP peer |
| + | *** Fixed realtime graphs responsive design issues |
| + | *** Fixed not all LAN interfaces shown in dropdown in Hotspot service page |
| + | *** Fixed modem updater legacy firmware flashing |
| + | ** <b>System</b> |
| + | *** Patched FRR CVE-2023-38406 |
| + | *** Patched FRR CVE-2023-38407 |
| + | *** Patched FRR CVE-2023-41358 |
| + | *** Patched FRR CVE-2023-41360 |
| + | *** Patched FRR CVE-2023-41909 |
| + | *** Patched FRR CVE-2023-47234 |
| + | *** Patched FRR CVE-2023-47235 |
| + | *** Patched OpenSSL CVE-2023-3446 |
| + | *** Patched OpenSSL CVE-2023-3817 |
| + | *** Patched LibXML2 CVE-2023-39615 |
| + | *** Patched LibXML2 CVE-2023-45322 |
| + | *** Patched FFMPEG CVE-2021-28429 |
| + | *** Patched FFMPEG CVE-2022-48434 |
| + | *** Patched dnsmasq CVE-2023-28450 |
| + | *** Fixed running out of space when SSHFS is mounted in /tmp while generating troubleshoot |
| + | |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.4/TRB1/TRB1_R_00.07.05.4_WEBUI.bin TRB1_R_00.07.05.4]</span></b> | 2023.11.09=== |
| + | |
| + | * <b>Improvements</b> |
| + | ** <b>WebUI</b> |
| + | *** Improved asynchronous pagination in events log pages |
| + | *** Optimized Overview page load |
| + | *** Added resource loading cancellation after switching to different page |
| + | |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.2/TRB1/TRB1_R_00.07.05.2_WEBUI.bin TRB1_R_00.07.05.2]</span></b> | 2023.10.30=== |
| + | |
| + | * <b>Improvements</b> |
| + | ** <b>System</b> |
| + | *** Security improvements |
| | | |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/TRB1/TRB1_R_00.07.05_WEBUI.bin TRB1_R_00.07.05]</span></b> | 2023.10.09=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/TRB1/TRB1_R_00.07.05_WEBUI.bin TRB1_R_00.07.05]</span></b> | 2023.10.09=== |
Line 270: |
Line 602: |
| *** Delayed Custom Scripts execution on boot, after storage devices are mounted | | *** Delayed Custom Scripts execution on boot, after storage devices are mounted |
| *** Fixed Custom Scripts permissions after save | | *** Fixed Custom Scripts permissions after save |
− | *** Fixed Y2K38 bug | + | *** Changed certificate expiry calculation mechanism to fix Y2K38 bug |
| *** Fixed downloading of certificates that have a space in their name in Administration -> Certificates -> Certificates Manager | | *** Fixed downloading of certificates that have a space in their name in Administration -> Certificates -> Certificates Manager |
| *** Fixed Events Log database rotation to prevent log partition space exhaustion | | *** Fixed Events Log database rotation to prevent log partition space exhaustion |