Line 7: |
Line 7: |
| ==Changelog== | | ==Changelog== |
| <!--NEW_FW--> | | <!--NEW_FW--> |
− | ===<b>[[Media:RUT2M_R_00.07.07_WEBUI.bin|RUT2M_R_00.07.07]]</b> | 2024.04.16=== | + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.3/RUT2M/RUT2M_R_00.07.07.3_WEBUI.bin RUT2M_R_00.07.07.3]</span></b> | 2024.06.25=== |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** WebUI: fixed port advertisement change |
| + | ** <b>System</b> |
| + | *** FOTA: fixed config when upgrading from older firmware with keep settings |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2024-31950 |
| + | ** CVE-2024-31951 |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.2/RUT2M/RUT2M_R_00.07.07.2_WEBUI.bin RUT2M_R_00.07.07.2]</span></b> | 2024.06.12=== |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Zerotier: added backup WAN interface blacklisting if WAN failover is enabled |
| + | *** Mobile: improved communication stability with eSIM |
| + | ** <b>Services</b> |
| + | *** SNMP: added bruteforce attack prevention when using SNMP v3 user |
| + | *** L2TP: improved reconnect attempt logic |
| + | *** Wireless: removed unnecessary information from system logs |
| + | ** <b>System</b> |
| + | *** SSH: removed weak SSH algorithms |
| + | *** Telnet: moved to Package Manager |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** BGP: fixed instance migration issues |
| + | *** Mobile: fixed forced APN configuration |
| + | ** <b>Services</b> |
| + | *** DMVPN: fixed duplicate NHRP map entries creation |
| + | *** OpenVPN: added fixes for the insecure tls-cert-profile option usage |
| + | ** <b>System</b> |
| + | *** IP Block: fixed blocking of UDP traffic |
| + | *** Backup: fixed backup validation |
| + | *** Ledman: fixed WiFi LED indication when WiFi configuration is changed |
| + | *** Uboot: fixed firmware recovery update via uboot on Windows |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2024-31948 |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/RUT2M/RUT2M_R_00.07.07.1_WEBUI.bin RUT2M_R_00.07.07.1]</span></b> | 2024.05.03=== |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Mobile: improved connection establish time for uqmi protocol |
| + | ** <b>System</b> |
| + | *** WebUI: improved first login password change logic |
| + | *** Certificates: updated Root CA certificates |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** Mobile: fixed denied roaming flag set |
| + | * <b>CVE Patches</b> |
| + | ** CVE-2024-2397 |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7/RUT2M/RUT2M_R_00.07.07_WEBUI.bin RUT2M_R_00.07.07]</span></b> | 2024.04.16=== |
| * <b>New</b> | | * <b>New</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 18: |
Line 68: |
| *** Auto APN: added 'eprivate010.tisparkle.com' APN for “Sparkle” operator | | *** Auto APN: added 'eprivate010.tisparkle.com' APN for “Sparkle” operator |
| *** QoS: added mobile interface select option | | *** QoS: added mobile interface select option |
− | *** Mobile: added framed routing support
| |
| *** Failover: added additional connection flush options | | *** Failover: added additional connection flush options |
| *** Wireless: added auto-reconnect disable functionality | | *** Wireless: added auto-reconnect disable functionality |
Line 75: |
Line 124: |
| *** OpenVPN: added the bridge option for selecting the network device to be bridged with | | *** OpenVPN: added the bridge option for selecting the network device to be bridged with |
| *** OpenVPN: added possibility to create more than one TAP client | | *** OpenVPN: added possibility to create more than one TAP client |
− | *** SSTP: updated package version to 1.0.19
| |
− | *** Mosquitto: updated package version to 2.0.17
| |
− | *** Tailscale: updated package version to 1.62.1
| |
| *** Auto Reply: added available SMS message parameters to "Message text" input | | *** Auto Reply: added available SMS message parameters to "Message text" input |
| *** Modbus Client: allow using diacritics in SMS alarms | | *** Modbus Client: allow using diacritics in SMS alarms |
Line 83: |
Line 129: |
| *** WebUI: added MAC authentication support when using RADIUS authentication mode | | *** WebUI: added MAC authentication support when using RADIUS authentication mode |
| *** WebUI: moved licenses to footer | | *** WebUI: moved licenses to footer |
| + | *** SSTP: updated package version to 1.0.19 |
| + | *** Mosquitto: updated package version to 2.0.17 |
| ** <b>System</b> | | ** <b>System</b> |
| *** WebUI: added more strict password requirements for restoring backup | | *** WebUI: added more strict password requirements for restoring backup |
Line 102: |
Line 150: |
| *** Network: fixed DHCPv4 relay mode enabling | | *** Network: fixed DHCPv4 relay mode enabling |
| *** Mobile: fixed PIN code set after modem restart | | *** Mobile: fixed PIN code set after modem restart |
− | *** Mobile: fixed cases where 5G NSA network type was shown incorrectly
| |
| *** Mobile: fixed an issue where using SIM change command on one SIM slot modems would reset connection | | *** Mobile: fixed an issue where using SIM change command on one SIM slot modems would reset connection |
| *** Mobile: fixed an issue where message storage would not be checked correctly | | *** Mobile: fixed an issue where message storage would not be checked correctly |
Line 178: |
Line 225: |
| *** CVE-2024-27913 | | *** CVE-2024-27913 |
| *** CVE-2024-22365 | | *** CVE-2024-22365 |
| + | ---- |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUT2M/RUT2M_R_00.07.06.10_WEBUI.bin RUT2M_R_00.07.06.10]</span></b> | 2024.04.04=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUT2M/RUT2M_R_00.07.06.10_WEBUI.bin RUT2M_R_00.07.06.10]</span></b> | 2024.04.04=== |
| + | * <b>Fix</b> |
| + | ** <b>System</b> |
| + | *** Ledman: fixed memory leak |
| ---- | | ---- |
− | * Global changelog for <b>R_00.07.06.10</b> - [[Global RUTOS changelog#R_00.07.06.10|LINK]]
| |
| ===<b>RUT2M_R_00.07.06.8</b> | 2024.03.25=== | | ===<b>RUT2M_R_00.07.06.8</b> | 2024.03.25=== |
| + | <b>Note:</b> Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control. |
| + | * <b>Improvements</b> |
| + | ** <b>Services</b> |
| + | *** IPSec: disabled libgmp in favor of openssl |
| + | *** IPSec: updated Strongswan to 5.9.6 |
| + | * <b>Fix</b> |
| + | ** <b>Services</b> |
| + | *** IPSec: increased charon load timeout |
| + | *** IPSec: fixed loading of large private keys |
| ---- | | ---- |
− | * Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control.
| |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUT2M/RUT2M_R_00.07.06.6_WEBUI.bin RUT2M_R_00.07.06.6]</span></b> | 2024.03.04=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUT2M/RUT2M_R_00.07.06.6_WEBUI.bin RUT2M_R_00.07.06.6]</span></b> | 2024.03.04=== |
| + | * <b>New</b> |
| + | ** <b>Services</b> |
| + | *** Added domain and subdomain options for external landing page in Hotspot |
| + | * <b>Improvements</b> |
| + | ** <b>System</b> |
| + | *** Minified *.svg WebUI files to save space on the device |
| + | *** Removed unused easy-rsa package to increase free space |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** Fixed mobile daily data usage representation |
| + | *** Fixed the issue with Wireless bgscan functionality not operating correctly |
| ---- | | ---- |
− | * Global changelog for <b>R_00.07.06.6</b> - [[Global RUTOS changelog#R_00.07.06.6|LINK]]
| |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUT2M/RUT2M_R_00.07.06.5_WEBUI.bin RUT2M_R_00.07.06.5]</span></b> | 2024.02.21=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUT2M/RUT2M_R_00.07.06.5_WEBUI.bin RUT2M_R_00.07.06.5]</span></b> | 2024.02.21=== |
| + | * <b>New</b> |
| + | ** <b>Network</b> |
| + | *** Added support for multi line USSD |
| + | * <b>Improvements</b> |
| + | ** <b>Network</b> |
| + | *** Improved DMZ to use its source zone on port forwards creation |
| + | ** <b>System</b> |
| + | *** Updated netifd version to 2024-01-04 |
| + | *** Updated PPP package version to 2.4.9 |
| + | *** Updated E2fsprogs package version to 1.47.0 |
| + | *** Updated Musl package version to 1.2.4 |
| + | * <b>Fix</b> |
| + | ** <b>Network</b> |
| + | *** Fixed an issue where DNS resolution failed for wireless clients connected to an access point configured on a specific VLAN |
| + | ** <b>WebUI</b> |
| + | *** Fixed action descriptions in the traffic rules table |
| + | ** <b>System</b> |
| + | *** Fixed WiFi LED indication when access point is turned off |
| + | *** Fixed year 2038 problem with time counter overflow |
| ---- | | ---- |
− | * Global changelog for <b>R_00.07.06.5</b> - [[Global RUTOS changelog#R_00.07.06.5|LINK]]
| |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUT2M/RUT2M_R_00.07.06.3_WEBUI.bin RUT2M_R_00.07.06.3]</span></b> | 2024.01.17=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUT2M/RUT2M_R_00.07.06.3_WEBUI.bin RUT2M_R_00.07.06.3]</span></b> | 2024.01.17=== |
| + | * <b>Improvements</b> |
| + | ** <b>Services</b> |
| + | *** Increased DLMS Client connection timeout for TCP sockets |
| + | * <b>Fix</b> |
| + | ** <b>Services</b> |
| + | *** Fixed DLMS Client memory leak with profile generic COSEM class |
| + | ** <b>WebUI</b> |
| + | *** Fixed Events Log sorting and search features |
| + | ** <b>System</b> |
| + | *** Patched CVE-2024-0193 vulnerability |
| + | *** Patched CVE-2023-51779 vulnerability |
| + | *** Updated OpenSSH to 9.6p1 version, fixed CVE-2023-51385 and CVE-2023-51384 |
| + | *** Fixed profile migrations, added error handling when trying to change profile while it is still applying |
| + | ---- |
| + | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.1/RUT2M/RUT2M_R_00.07.06.1_WEBUI.bin RUT2M_R_00.07.06.1]</span></b> | 2024.01.04=== |
| + | * <b>Fix</b> |
| + | ** <b>Services</b> |
| + | *** Fixed issue with NTPclient zombie processes |
| ---- | | ---- |
− | * Global changelog for <b>R_00.07.06.3</b> - [[Global RUTOS changelog#R_00.07.06.3|LINK]]
| |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6/RUT2M/RUT2M_R_00.07.06_WEBUI.bin RUT2M_R_00.07.06]</span></b> | 2023.12.20=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6/RUT2M/RUT2M_R_00.07.06_WEBUI.bin RUT2M_R_00.07.06]</span></b> | 2023.12.20=== |
− |
| |
| * <b>New</b> | | * <b>New</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 220: |
Line 322: |
| *** Added ability to enable/disable SSH access for specific users in System Users | | *** Added ability to enable/disable SSH access for specific users in System Users |
| *** API support | | *** API support |
− |
| |
| * <b>Improvements</b> | | * <b>Improvements</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 256: |
Line 357: |
| *** Added process activity load list to generated troubleshoot | | *** Added process activity load list to generated troubleshoot |
| *** Changed default OPKG feed to use Teltonika's URL | | *** Changed default OPKG feed to use Teltonika's URL |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 316: |
Line 416: |
| *** Patched dnsmasq CVE-2023-28450 | | *** Patched dnsmasq CVE-2023-28450 |
| *** Fixed running out of space when SSHFS is mounted in /tmp while generating troubleshoot | | *** Fixed running out of space when SSHFS is mounted in /tmp while generating troubleshoot |
− | | + | ---- |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.4/RUT2M/RUT2M_R_00.07.05.4_WEBUI.bin RUT2M_R_00.07.05.4]</span></b> | 2023.11.09=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.4/RUT2M/RUT2M_R_00.07.05.4_WEBUI.bin RUT2M_R_00.07.05.4]</span></b> | 2023.11.09=== |
− |
| |
| * <b>Improvements</b> | | * <b>Improvements</b> |
| ** <b>WebUI</b> | | ** <b>WebUI</b> |
Line 324: |
Line 423: |
| *** Optimized Overview page load | | *** Optimized Overview page load |
| *** Added resource loading cancellation after switching to different page | | *** Added resource loading cancellation after switching to different page |
− | | + | ---- |
| ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/RUT2M/RUT2M_R_00.07.05_WEBUI.bin RUT2M_R_00.07.05]</span></b> | 2023.10.09=== | | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/RUT2M/RUT2M_R_00.07.05_WEBUI.bin RUT2M_R_00.07.05]</span></b> | 2023.10.09=== |
− |
| |
| * <b>New</b> | | * <b>New</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 486: |
Line 584: |
| *** Device name is now displayed in browser tab when in WebUI login page | | *** Device name is now displayed in browser tab when in WebUI login page |
| *** Added NF conntrack information in generated troubleshoot archive | | *** Added NF conntrack information in generated troubleshoot archive |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 616: |
Line 713: |
| *** Patched CVE-2023-29469 vulnerability | | *** Patched CVE-2023-29469 vulnerability |
| *** Patched CVE-2023-31490 vulnerability | | *** Patched CVE-2023-31490 vulnerability |
− | *** Patched CVE-2023-36369 vulnerability | + | *** Patched CVE-2021-36369 vulnerability |
| *** Patched CVE-2023-48174 vulnerability | | *** Patched CVE-2023-48174 vulnerability |
| *** Delayed Custom Scripts execution on boot, after storage devices are mounted | | *** Delayed Custom Scripts execution on boot, after storage devices are mounted |
Line 628: |
Line 725: |
| *** Changed Mosquitto build options to not include cJSON library | | *** Changed Mosquitto build options to not include cJSON library |
| *** Fixed device name resetting to default upon refresh in Administration | | *** Fixed device name resetting to default upon refresh in Administration |
− | | + | ---- |
| ===<b>[[Media:RUT2M_R_00.07.04.5_WEBUI.bin|RUT2M_R_00.07.04.5]]</b> | 2023.07.24=== | | ===<b>[[Media:RUT2M_R_00.07.04.5_WEBUI.bin|RUT2M_R_00.07.04.5]]</b> | 2023.07.24=== |
− |
| |
| * <b>Improvements</b> | | * <b>Improvements</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
| *** Added metric field support in BGP Route-maps page | | *** Added metric field support in BGP Route-maps page |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 640: |
Line 735: |
| *** Fixed an issue where MBN activation would not be successful | | *** Fixed an issue where MBN activation would not be successful |
| *** Fixed service provider parsing when operator does not provide all fields for Quectel modems | | *** Fixed service provider parsing when operator does not provide all fields for Quectel modems |
− | | + | ---- |
| ===<b>RUT2M_R_00.07.04.4</b> | 2023.06.26=== | | ===<b>RUT2M_R_00.07.04.4</b> | 2023.06.26=== |
| <b>Note:</b> Firmware version <i>RUT2M_R_00.07.04.4</i> released on 2023.06.26 was removed due to an issue on certain modems with failing initial mobile connection after upgrading from <i>RUT2M_R_00.07.02.5</i> or lower. | | <b>Note:</b> Firmware version <i>RUT2M_R_00.07.04.4</i> released on 2023.06.26 was removed due to an issue on certain modems with failing initial mobile connection after upgrading from <i>RUT2M_R_00.07.02.5</i> or lower. |
Line 647: |
Line 742: |
| ** <b>Network</b> | | ** <b>Network</b> |
| *** Travelmate package for captive portal redirection | | *** Travelmate package for captive portal redirection |
− |
| |
| * <b>Improvements</b> | | * <b>Improvements</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 655: |
Line 749: |
| ** <b>System</b> | | ** <b>System</b> |
| *** Device name is now displayed in browser tab when in login page | | *** Device name is now displayed in browser tab when in login page |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 663: |
Line 756: |
| *** Fixed an issue with Multi AP service remaining enabled when disabling | | *** Fixed an issue with Multi AP service remaining enabled when disabling |
| *** Fixed default networks in WAN firewall zone and possibility to add network that is not yet created | | *** Fixed default networks in WAN firewall zone and possibility to add network that is not yet created |
− |
| |
| ** <b>Services</b> | | ** <b>Services</b> |
| *** Fixed connection establishment for RMS MQTT service | | *** Fixed connection establishment for RMS MQTT service |
Line 670: |
Line 762: |
| *** Fixed being able to set device name without passing validations | | *** Fixed being able to set device name without passing validations |
| *** Fixed WireGuard port change in firewall traffic rule when modifying instance port | | *** Fixed WireGuard port change in firewall traffic rule when modifying instance port |
− | | + | ---- |
| ===<b>[[Media:RUT2M_R_00.07.04.3_WEBUI.bin|RUT2M_R_00.07.04.3]]</b> | 2023.05.11=== | | ===<b>[[Media:RUT2M_R_00.07.04.3_WEBUI.bin|RUT2M_R_00.07.04.3]]</b> | 2023.05.11=== |
− |
| |
| * <b>Improvement</b> | | * <b>Improvement</b> |
| ** <b>System</b> | | ** <b>System</b> |
Line 678: |
Line 769: |
| *** Removed SSH RSA key generation | | *** Removed SSH RSA key generation |
| *** Added SSH ECDSA key generation | | *** Added SSH ECDSA key generation |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 688: |
Line 778: |
| ** <b>System</b> | | ** <b>System</b> |
| *** Fixed an issue on bootloader web recovery hanging with certain firmware sizes | | *** Fixed an issue on bootloader web recovery hanging with certain firmware sizes |
− | | + | ---- |
| ===<b>[[Media:RUT2M_R_00.07.04.2_WEBUI.bin|RUT2M_R_00.07.04.2]]</b> | 2023.04.18=== | | ===<b>[[Media:RUT2M_R_00.07.04.2_WEBUI.bin|RUT2M_R_00.07.04.2]]</b> | 2023.04.18=== |
− |
| |
| * <b>New</b> | | * <b>New</b> |
| ** nftables support | | ** nftables support |
− |
| |
| * <b>Improvement</b> | | * <b>Improvement</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 706: |
Line 794: |
| *** Updated CA certificates to version 20211016 | | *** Updated CA certificates to version 20211016 |
| *** Updated libiwinfo to version 2022-08-19 | | *** Updated libiwinfo to version 2022-08-19 |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
Line 731: |
Line 818: |
| *** Fixed frr vulnerability CVE-2022-37035 | | *** Fixed frr vulnerability CVE-2022-37035 |
| *** Removed ability for non root users to edit scripts that get executed as root | | *** Removed ability for non root users to edit scripts that get executed as root |
− | | + | ---- |
| ===<b>[[Media:RUT2M_R_00.07.04.1_WEBUI.bin|RUT2M_R_00.07.04.1]]</b> | 2023.03.24=== | | ===<b>[[Media:RUT2M_R_00.07.04.1_WEBUI.bin|RUT2M_R_00.07.04.1]]</b> | 2023.03.24=== |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>Network</b> | | ** <b>Network</b> |
| *** Fixed Data Limit issue | | *** Fixed Data Limit issue |
− | | + | ---- |
| ===RUT2M_R_00.07.04_WEBUI.bin | 2023.03.07=== | | ===RUT2M_R_00.07.04_WEBUI.bin | 2023.03.07=== |
− |
| |
| <b>Note:</b> Firmware version <b>RUT2M_R_00.07.04_WEBUI.bin</b> was removed from downloads list due to issues with Mobile Data Limit functionality not working correctly when Software offloading is enabled. | | <b>Note:</b> Firmware version <b>RUT2M_R_00.07.04_WEBUI.bin</b> was removed from downloads list due to issues with Mobile Data Limit functionality not working correctly when Software offloading is enabled. |
− |
| |
| * <b>Improvements</b> | | * <b>Improvements</b> |
| ** <b>WebUI</b> | | ** <b>WebUI</b> |
Line 787: |
Line 871: |
| *** Updated default admin group access rights | | *** Updated default admin group access rights |
| *** Updated DFOTA notification to show "More info" only when the update is forced | | *** Updated DFOTA notification to show "More info" only when the update is forced |
− |
| |
| * <b>Fix</b> | | * <b>Fix</b> |
| ** <b>WebUI</b> | | ** <b>WebUI</b> |