Template:Networking rut9xx firmware change log: Difference between revisions

From Teltonika Networks Wiki
VisualWikitext
No edit summary
(Replaced content with "===<b>RUT9_R_00.07.00.2</b> | 2021.10.19 === * <b>Fixes</b> ** Fixed NMEA sentence validation for Meig modems ==='''RUT9_R_00.07.00''' | 2021.07.16 === * <b>New features</b> ** New, RUTX-like WebUI style ** New WebUI based on Vue.js 2.6.12 ** RutOS updated to OpenWrt 19.07.7 base ** DNP3 Master and DNP3 Oustation ** 'Restore to user's defaults' SMS Utilities rule ** DHCP Relay AT command *...")
Tag: Replaced
 
(3 intermediate revisions by 2 users not shown)
Line 1: Line 1:
===<b>[[Media:RUT9_R_00.07.03.4_WEBUI.bin|RUT9_R_00.07.03.4]]</b> | 2023.02.09===
===<b>[[Media:RUT9_R_00.07.00.2 WEBUI.bin|RUT9_R_00.07.00.2]]</b> | 2021.10.19 ===
 
* <b>Fix</b>
** <b>Network</b>
*** Changed generic modem restart method
*** Fixed mobile page VoLTE switching issues
** <b>Services</b>
*** Sanitized tcpdump storage location
*** Fixed RS485 issue on devices from batch > 110
*** Removed OPOST stty output setting with legacy Over IP mode
** <b>System</b>
*** Fixed legacy backup upload
*** Fixed upgrade from legacy FW issue with keep settings
 
===<b>[[Media:RUT9_R_00.07.03.3_WEBUI.bin|RUT9_R_00.07.03.3]]</b> | 2023.01.25===
 
* <b>Fix</b>
** <b>Network</b>
*** Fixed disabled WiFi interface after factory reset
 
===<b>[[Media:RUT9_R_00.07.03.2_WEBUI.bin|RUT9_R_00.07.03.2]]</b> | 2023.01.13===
 
* <b>New</b>
** <b>System</b>
*** Japanese language
 
* <b>Improvements</b>
** <b>Network</b>
*** Optimized mobile netifd script installation
 
* <b>Fix</b>
** <b>Network</b>
*** Shortened modem hang monitor timeout
*** Fixed VLAN option setting when changing VLAN ID
** <b>Services</b>
*** Fixed RS485 not receiving data without transmiting prior
 
===<b>[[Media:RUT9_R_00.07.03.1_WEBUI.bin|RUT9_R_00.07.03.1]]</b> | 2023.01.03===
 
* <b>Improvements</b>
** <b>System</b>
*** Remove front-end certificate validation
** <b>Network</b>
*** Optimized mobile netifd script installation
 
* <b>Fix</b>
** <b>Network</b>
*** Fixed modem communication validation
*** Fixed connection establishment in IPv6 only mode
** <b>Services</b>
*** Fixed libxml2 vulnerability CVE-2022-40303
*** Fixed an IPsec Phase one & two setting migration issue{{#ifeq:{{{name}}}|RUT955|
*** Returned missing udp_client_count option to Over IP mode|}}
*** Fixed operator index in DNP3 outstation{{#ifeq:{{{name}}}|RUT955|<nowiki>; added GPS resubscribe; fixed segfault when GPS is enabled</nowiki>|}}
*** Fixed OpenVPN migration from legacy firmwares
*** Fixed not being able to create or edit PPTP instances after upgrading from legacy firmware{{#ifeq:{{{name}}}|RUT955|
*** Fixed an SD card formatting issue|}}
** <b>System</b>
*** Fixed JSON key parsing; keys can now be any printable character sequence
*** Fixed memory leak in 'session' module
** <b>WebUI</b>
*** Fixed file pretty name parsing
 
===<b>[[Media:RUT9_R_00.07.03_WEBUI.bin|RUT9_R_00.07.03]]</b> | 2022.12.16===
 
* <b>New</b>
** <b>Network</b>
*** Firewall DMZ page
** <b>Services</b>
*** Java package
*** SFTP server support
*** OPC UA client
*** NTRIP
*** Hotspot registered users management page
*** BACnet
*** Modbus Serial Slave
** <b>System</b>
*** Portuguese language
*** Spanish language
*** Turkish language
*** Email Relay package
** <b>WebUI</b>
*** New Web menu design
 
* <b>Improvements</b>
** <b>Network</b>
*** Updated modem handling, attachment, tracking and connection establishment processes
*** Added the possibility to select multiple ports in all firewall port fields
*** Added 'Match' traffic by type option to firewall traffic rules
*** Added DNS servers and routing table fields to the Wireguard page
*** Improved generating network topology
*** Moved Relayd, UDP Relay & Static Leases to the Interfaces menu section
*** Update Firewall Traffic Rules page with DSCP and MARK options
*** Added keepalive, holdtime and connect timers to BGP configuration
*** Added 'Use gateway metric' to network protocols web interface
*** Added more DHCPv6 client events to system log
*** Moved IP Filter rules from Modbus TCP Gateway and Over IP services to Firewall page
*** Added option to select subnet parameters in mobile Passthrough/Bridge modes
*** Added WhereverSIM operator APN and fr.lebara.mobi APN to APN database
*** Added mobile connection state for IPv6
*** Added individual WiFi toggle support
*** Added error message when DFS channel is selected during scanning
*** Added switch back to default SIM after SIM Switch service disable
*** Added wget tracking method to WAN Failover
*** Added interface checks to remove inaccurate Failover events from the Event Log
** <b>Services</b>
*** Added format button for each USB device in USB Tools General page
*** Reduced waiting time during storage device setup for Memory Expansion
*** Optimized Storage Memory Expansion package size
*** Replaced ntfs-3g with kernel-mode driver
*** Added USB to Serial support for Modbus, MQTT Modbus Gateway, NTRIP, DNP3
*** Added CSP headers to Hotspot Landing Page
*** Added hotspot user script validation
*** Improved logging of disconnecting client devices
*** Added the possibility to switch profiles on GPS geofencing events
*** Added satellite count and accuracy columns to GPS Map page
*** Implemented Hotspot 'forget' method, which removes user from DB by MAC
*** Added execute custom script SMS Utilities rule
*** Added receiver and transceiver mode support to SMPP
*** Added timezone synchronization with GSM operator option to NTP Client
*** Updated Zerotier web interface
*** Added IPsec Flush connection option on tunnel initialization
*** Added MODBUS slave regfile validation
*** Added delay, number of timeouts, always reconnect options to MODBUS Master service
*** Added DMVPN Phase 2 and Phase 3 support
*** Added synchronization counting to NTP client
*** Expanded the data that is sent to the Cumulocity cloud with device log, mobile data usage nd GPS data
*** Added 'Unregister' button to RMS page
*** Added new data monitoring options to SNMP: configuration state of wireless, smart queues & VLANs
*** Updated Zerotier package to version 1.10.1
*** Added automatic package removal upon failed installation in Package Manager
*** Added option to describe custom routing table and MTU auto counting to Wireguard VPN
*** Added IP blocking to MQTT Bridge for failed login attempts to prevent bruteforce attacks
*** Updated sqm-scripts to version 1.5.1
*** Improved MODBUS Master service: added multiple datatypes, added multiple register reading for alarms
*** Added monthly reboot option to periodic reboot function
*** Added support for multiple custom option selection to SSTP configuration
*** Added PKCS12 certificate chain support to OpenVPN
*** Improved MQTT to support multiple port listening, multiple bridge connections, notification settings and added support for custom configuration file
*** Added QoS selection to MQTT Modbus Gateway
*** Improved RAM usage during upload and installation of packages via Package Manager
*** Updated curl to version 7.86.0
*** Added brute-force prevention measures to Post/Get
*** Added automatic private and public key generation to Wireguard VPN
*** Added multiple Remote source IP support to IPsec
*** Added the possibility to configure multiple IPsec phase 1 and phase 2 proposals
*** Added functionality to rotate log file when log is saved to Flash memory
*** Improved performance while fetching packages on repeat visits to the Package Manager page
*** Added custom value calculation to ADC and ACL pins
*** Added MODBUS TCP Slave registers to store Analog Current Loop value
** <b>System</b>
*** Added a 'test mail' button to the Administration -> Recipients page
*** Added option to clear blocked IPs in the Access Control page after reboot
*** Updated Web Request-Response core logic
*** Added certificate validation to all services that support certificate upload
*** Updated URL protocol validations
*** Removed profile update requests during Save & apply
*** Optimized profile switching logic
** <b>WebUI</b>
*** Added an indication to the Interfaces page that displays when data limit is enabled
*** Added bootloader version to the Device section in the System page
*** Added configuration page shortcuts to Overview page widgets
*** Added tooltip in Overview that show free, used and total RAM/Flash values on mouse cursor hover
*** Updated network interfaces protocols web interface
*** Updated 404 page to include navigation menu
 
* <b>Fix</b>
** <b>Network</b>
*** Fixed jumbo frames MTU issue
*** Added the 'Any' choice to source & destination IP address field in NAT rule edit
*** Fixed NHRP web interface issues
*** Fixed WAN interface configuration interfering with LAN
*** Fixed mdcollect memory leak issue
*** Fixed data limit not resetting properly
*** Fixed incorrect mobile data usage calculations for multiple day periods
*** Fixed an Auto APN 'Keep settings' issue
*** Fixed data counting after mobile data limit has been reached
*** Fixed mobile band not setting correctly on first try
*** Fixed incorrect data limit conditions causing unwanted SIM switches
*** Fixed Passthrough DHCP lease time setting
*** Fixed mobile bridge mode issue when no DNS servers are supplied
*** Added new Operator Lists instance name validations
*** Fixed mac80211 vulnerabilities CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722
*** Fixed wireless interfaces connections not reestablishing after disabling & enabling again
*** Fixed SIM Switch issue on newly created mobile interfaces
*** Fixed switch back to primary SIM rule disable when the default SIM is changed
*** Fixed incorrect SIM Switch behavior on low signal value
*** Fixed Wired WAN connectivity issue when Failover interfaces are disabled
*** Fixed Failover fallback issue
** <b>Services</b>
*** Fixed Hotspot landing page opening issue
*** Fixed Printer service starting issue
*** Fixed Printer service boot issues
*** Fixed DLNA service reload issues on USB drive insert/remove
*** Corrected serial connection baud rates
*** Fixed hostname resolution in 'Over IP' serial type
*** Fixed RS232/RS485 starting issues
*** Fixed relay state switching
*** Fixed Save & Apply issue with ADC/ACL type condition on I/O Juggler
*** Added I/O restart on configuration profile change
*** Fixed I/O voltage range display for power socket pins
*** Fixed SMNP OID for I/O state
*** Fixed I/O Juggler SMS text message Save & Apply issue
*** Fixed Hotspot connected user list maximum upload/download value limits
*** Fixed incorrect connected Hotspot user information in RMS JSON
*** Fixed Delay field in GPS HTTPS/HTTP Server Settings section
*** Fixed AVL packet timestamp display
*** Fixed issue that prevented GPS map display after clearing cache
*** Removed unnecessary field from the Port Mirroring page
*** Fixed Events Reporting 'Changing to SIM1/SIM2' options
*** Fixed I/O analog voltage type display issue
*** Fixed Hotspot issues related to specific connected phones
*** Fixed Wireless AP enabled by MODBUS TCP Master not showing in Wireless clients
*** Fixed WiFi Scanner hostname validation issues
*** Fixed UCI SMS Rule return message to display new changes
*** Fixed DNP3 issues when asking for modem temperature
*** Fixed base64 encoding of SMS messages when forwarding to HTTP
*** Fixed SMS sending issues when using multiple APN
*** Added Gateway modem option to IP Block and WoL in SMS Rule edit
*** Fixed unblocking IP addresses with an SMS message
*** Fixed Mobile Utilities page not load properly on some occasions
*** Fixed dbus vulnerability CVE-2020-35512
*** Fixed dnsmasq vulnerability CVE-2022-0934
*** Fixed ext4 vulnerability CVE-2021-3428
*** Fixed kernel vulnerabilities CVE-2021-3669, CVE-2021-4203, CVE-2022-1353, CVE-2022-3435, CVE-2022-20008, CVE-2022-30594
*** Fixed libxm12 vulnerability CVE-2022-29824
*** Fixed Linux vulnerabilities CVE-2021-4148, CVE-2022-0480, CVE-2022-1055, CVE-2022-0886, CVE-2022-2663, CVE-2022-36879 for v5.4
*** Fixed MQTT DoS vulnerability CVE-2021-41039
*** Fixed privoxy vulnerability CVE-2021-44542
*** Fixed python3 vulnerability CVE-2022-42919
*** Fixed strongswan vulnerabilities CVE-2021-41991, CVE-2021-45079
*** Fixed uboot vulnerabilities CVE-2022-30552, CVE-2022-30790
*** Fixed switching between RMS connection types while the device is unregistered
*** Fixed reload issues in website blocking feature
*** Fixed IPsec PSK secret required field validation
*** Fixed bandwidth limiting after QoS is enabled for the first time
*** Fixed Dropbear issues when logging in over IPv6
*** Fixed Modbus status in Status -> Services page
*** Fixed Azure IoT Hub application issues when sending large volumes of data
*** Fixed Azure IoT Hub MQTT password validation
*** Fixed DMVPN configuration migration issue
*** Fixed DMVPN duplicate select options, added suffix to mobile interfaces to use IPv4
*** Fixed DMVPN IPsec connection issue
*** Fixed DMVPN mobile interface 'Keep settings' migration issue
*** Fixed Dynamic DNS long hostname text display issue
*** Fixed Events Reporting memory leak issue
*** Fixed Events Reporting not triggering after flipping an I/O slider
*** Fixed FOTA cron job not starting after factory reset
*** Fixed IPsec local firewall option parsing
*** Fixed IPsec tunnel creation issue when compatibility mode is used and the tunnel name contains an underscore
*** Fixed L2TP, PPTP, SSTP state display in the Status -> Services page
*** Fixed NTP pool hostname validation
*** Fixed OpenVPN certificate remove with Static key and TLS authentication methods
*** Fixed OpenVPN configuration saving issue when using HMAC key authentication
*** Fixed OpenVPN custom dev name transformation to correct format
*** Fixed OpenVPN device name setting logic when uploading config from file
*** Fixed OpenVPN instance status display
*** Fixed OpenVPN TAP (bridged) configuration detection
*** Fixed Qos configuration saving issue occurring after instance deletion
*** Fixed RMS JSON incorrect WAN state and IP information
*** Fixed RMS step access issue in the Setup Wizard page
*** Fixed SNMP issues after reboot while using a Hotspot
*** Fixed SNMP generating MIB files for devices in accordance with to their hardware
*** Fixed SNMP traps not working after SNMP is installed from server
*** Fixed SSTP client route creation issue
*** Fixed UPNP secure mode not turning off issue
*** Fixed Wireguard route to endpoint issue
*** Fixed manual package installation for queued packages
*** Fixed NAT Rules dependency from IPsec web instance
*** Returned usleep utility
*** Updated Australian and South African NordVPN server IP addresses
** <b>System</b>
*** Fixed Load Balancing, GRE, MQTT broker, IP alias, Operator list & SIM operator connection  migration from legacy firmwares
*** Fixed 3G LED animation issue
*** Fixed certificate signing issues
*** Fixed Telnet, CLI access blocking after max invalid tries
*** Fixed FW upgrade with 'Keep settings' while low free space is available
*** Fixed backup file duplication issue
*** Fixed network device handling in system
** <b>WebUI</b>
*** Fixed Hotspot interface display
*** Fixed side widget accessibility during first login
*** Fixed file upload issues
*** Fixed drag and drop issue in the Traffic Rules page
*** Fixed protocol display in the overview of the Interfaces page
*** Fixed blocked IP settings migration during a FW upgrade with the 'Keep settings'
*** Fixed login errors after browser tab restoration
*** Fixed redirect to newly set IP address after Interface configuration
*** Fixed firmware upgrade verify spinner not closing
*** Fixed an issue with file upload via drag and drop
 
===<b>[[Media:RUT9_R_00.07.02.7_WEBUI.bin|RUT9_R_00.07.02.7]]</b> | 2022.09.12===
 
* <b>Improvements:</b>
** Improved manual-auto connection mode
 
* <b>Fixes</b>
** Fixed AT command for SMS storage usage
** Fixed CVE-2022-1012 memory leak vulnerability
** Fixed CVE-2022-37434 kernel vulnerability
** Fixed GPS constellation settings
** Fixed interface option reset after VLAN ID change
** Removed memory leak on port events
** Fixed WiFi Scanner out of range crash when iterating collected data
 
===<b>[[Media:RUT9_R_00.07.02.6_WEBUI.bin|RUT9_R_00.07.02.6]]</b> | 2022.08.24===
 
* <b>Improvements:</b>
** Added 'home.vodafone.de' APN
** Improved stability of device information storage
 
* <b>Fixes:</b>
** Added SMSC type omitting when empty SMSC number parsed in SMS PDU mode
** Fixed Serial-symlink dmesg messages
** Fixed VoLTE management
** Fixed OpenVPN tls-auth and tls-crypt option names
 
===<b>[[Media:RUT9_R_00.07.02.5_WEBUI.bin|RUT9_R_00.07.02.5]]</b> | 2022.08.12===
 
* Improvements:
** Updated curl to version 7.83.1
** Updated firmware validation error messages
** Added multiple source IP address support to the Port Forwards page
** Increased custom APN Username & Password field maximum length to 64 symbols
** Added auto switch to modem's SMS storage when SIM card storage doesn't exist
** Improved mobile connection status handling
** Added CSP headers Hotspot WebUI landing page
 
* Fixes:
** Fixed CVE-2022-32205, CVE-2022-32206, CVE-2022-32207, CVE-2022-32208 curl vulnerabilities
** Fixed CVE-2022-30065 busybox vulnerability
** Fixed file upload path traversal
** Removed Data to Server limit to proccess less than 10 instances
** Fixed Data to Server 'out of memory' crashes when database is full or has a large amount of data
** Fixed OpenVPN dev setting logic
** Fixed OpenVPN updating from legacy issue that caused IPv6 not to work
** Fixed MAC and leasetime setting for Bridge & Passthrough modes
** Fixed modal tabs navigation when editing wireless interface with non-english languages
 
===<b>[[Media:RUT9_R_00.07.02.4_WEBUI.bin|RUT9_R_00.07.02.4]]</b> | 2022.07.20===
 
* Improvements:
** Added default password change warning message before firmware downgrade
** Extended time period for device to make connection to operator
** Reduced the number of modem reboots when changing mobile settings
** Reduced excessive log output when no SIM card is inserted
** Added modem restart prevention on modem init
** Added disable RPLMN option in the SIM section of the SIM card config
 
* Fixes:
** Fixed CVE-2022-2068 vulnerability
** Disabled autoconnect on stop-network call
** Fixed Hotspot login via landing page issue
 
===<b>[[Media:RUT9_R_00.07.02.3_WEBUI.bin|RUT9_R_00.07.02.3]]</b> | 2022.06.27===
 
* New Features:
** Port Mirroring
 
* Improvements:
** Added ping to DNS IPv6 support
** Added modem reset to default state after device FW upgrade
** Modem init now checks NVRAM sensitive commands before setting
** GSM output was made consistent
** Updated FSTools package to version 2022-05-03
** Added security headers to web requests
** Added default VoLTE value
** Specified IP address family on operator control's ping to DNS feature
 
* Fixes:
** Fixed CVE-2019-12900 libbz2 vulnerability
** Fixed behavior of some gsmctl commands
** Fixed CVE-2022-23303 hostapd vulnerability
** Fixed CVE-2022-29581 Linux kernel vulnerability
** Fixed CVE-2022-29458 ncurses vulnerability
** Fixed CVE-2022-1292 c_rehash script command injection vulnerability
** Fixed band locking issue
** Fixed race condition for wireless configuration initialization
 
===<b>[[Media:RUT9_R_00.07.02.1_WEBUI.bin|RUT9_R_00.07.02.1]]</b> | 2022.06.06===
 
* Improvements:
** Improved GSM related messages in Troubleshoot logs
 
* Fixes:
** Fixed IGMP Proxy menu item not appearing after package installation
** Fixed default mobile network configuration generation
** Fixed MODBUS write requests and Mobile Utils option setting
 
===<b>[[Media:RUT9_R_00.07.02_WEBUI.bin|RUT9_R_00.07.02]]</b> | 2022.05.23===
 
* <b>New features</b>
** Overview side widget
** IGMP Proxy
** Privileged Access Management (PAM)
** AWS Greengrass support
** HTTPS certificate and key upload feature
** SSH public keys edit box
** License page
** DNP3 data for Data to Server
 
* <b>Improvements</b>
** Updated busybox to version: 1.34.1
** Updated curl to version 7.79.1
** Added iptables filter package for string filtering
** Added CHAP authentication for L2TP VPN
** Added IPv6 support for L2TPv3 VPN
** Added EAP-MSCHAPV2 authentication method for IPsec VPN
** Added IPv6 support to Auto Reboot
** Added 'Save to flash' and 'Test configuration' button to DNP3 configuration page
** Updated SNMP version 5.9.1
** Added OpenSSL authentication options to SNMPv3
** Added support for OSPF redistribution options and OSPF neighbors
** Added password field to BGP Peers page
** Extended BGP "AS" field validation to accept integers up to 4294967295
** Added "DHE+RSA" to OpenVPN cipher selections
** Increased OpenVPN max password length from 128 bytes to 512 bytes
** Made HMAC key direction initial value dependent on the role of the instance (client or server)
** Made HMAC key and HMAC authentication key upload fields required
** Added DES to IPsec encryption algorithms selections
** Added special character support for CHAP secrets
** Added validation requirements for PPTP user list username field
** Added option to manually enter Public key in Wireguard configuration
** Made generating Wireguard  keys possible only while in auto mode
** Added Events Log database to troubleshoot archive
** Added RFC1918 filter field
** Added the possibility to unblock multiple blocked devices at once
** Added 'Port' column to blocked login attempts table
** Added Speedtest server refresh
** Updated Speedtest server list
** Added asterisk option to Site Blocking
** Added MD5 and SHA256 checksums to package validation page
** Changed certificate requirements to only require client key file if client certificate is used
** Added pagination and data retention between table pages
** Added pagination functionality to tables when there are more than 10 records
** Improved table sorting by saving user provided sort settings in the browser
** Improved drag and drop functionality
** Added the possibility to drag and drop files onto upload components
** Moved 'Root CA' from the 'Access Control' page to the 'Certificates' page
** Added 'Strict-Transport-Security' response header for HTTPS
** Added 'breadcrumbs' to modal windows
** Improved initial WebUI loading after login
** Added mobile bytes sent and bytes received SNMP OIDs
** Added mobile LED turn off feature ('System -> Administration'  page)
** Added 'iot.1nce.net', 'internet', 'VZWINTERNET' and Truphone APNs to APN database
** Updated mobile usage data point calculation logic
** Added the possibility to manually enter operator number
** Improved obtain mobile cell ID process
** Added modem restart if SIM card is removed during APN database fetching process
** Added unauthorized call logging
** Added space character support in SMS commands
** Disabled SMS modem storage configuration form when SIM is not inserted
** Changed SMS '%wi' parameter value to return IP address of any currently used WAN interface (not only wired)
** Added external modem SMS limit Overview card and widget
** Made in-use APNs visible next to mobile interface configurations (before clicking the 'Edit' button)
** Added duplicate value check for list configuration options
** Changed mobile card instance design
** Fixed 'Mobile Data usage reset' SMS rule
** Fixed the default state parameter of SMS list POST/GET command
** Added Hotspot configuration profiles
** Added local Hotspot user password hashing
** Added Hotspot password encoding option
** Improved Hotspot related firewall rule setting
** Improved WiFi Scanner enable switch to toggle 2 and 5 GHz instances separately
** Removed CHAP authentication protocol for WiFi Hotspots due to incompatibility with hashed passwords
** Added ubus support to Hotspot
** Changed default port name of WiFi devices for 'Topology state' Events Reporting rule
** Added AVL "Static Navigation" flag
** Added GSV parsing for NMEA collecting
** Added newline and GPS location actions to I/O Juggler
** Added error code 5 for reserved SAMBA user names
** Added Mobile data and SMS limit features for external modem
** Added I/O SNMP trap
** Added ISO 8601 time format to I/O Juggler's '%ts' parameter
** Added device name parameter '%pc' to I/O Juggler
** Added ACL or ADC SNMP trap notification on enter/exit/both
** Added ACL MQTT topic
** Added PPPoE VLAN priority support
** Made VRRP ping section dependent on main instance
** Added 'WAN to LAN' switch
** Added CRC verification support to MODBUS and RS232/RS485
 
* <b>Fixes</b>
** Fixed CVE-2021-20322, CVE-2021-4197, CVE-2022-1011, CVE-2022-0847 kernel vulnerabilities
** Fixed CVE-2022-28391 busybox vulnerability
** Fixed CVE-2018-16789 shellinabox vulnerability
** Fixed CVE-2021-44543, CVE-2021-44542 privoxy vulnerabilities
** Fixed CVE-2021-43618 GNU Multiple Precision Arithmetic Library vulnerability
** Fixed zlib backport security issue
** Fixed Wireguard firewall zone assignment
** Fixed queued packages disappearing from list after FW upgrade with keep settings
** Fixed error message display for multiple input validation rules
** Fixed incorrect DHCP validation range for start and limit fields
** Removed 'Bring up on boot' option from network interface configuration pages
** Fixed coma-separated DHCP options disappearing after save
** Fixed exclude and listen interfaces
** Fixed 'Use broadcast flag' option saving
** Fixed firewall zone assignment when creating new interfaces
** Fixed OpenVPN 'Netmask' and 'IP address' field validations
** Fixed OpenVPN TAP configuration saving issue
** Fixed OpenVPN switching to TUN mode when uploading a configuration from file
** Fixed dynamic BGP route state display
** Fixed BGP peer enable in edit page
** Fixed issue when no L2TP client instance could be bound to IPsec
** Fixed firewall rule and zone behavior related to config section creation
** Added default value for L2TPv3 netmask, which is now written to config after save
** Fixed passthrough option saving to IPsec file
** Fixed DMVPN issue where instance configuration could not be saved
** Fixed Wireguard peer could not be saved issue
** Fixed NTP client time synchronization after factory reset
** Fixed device time display with selected time zone
** Fixed MODBUS TCP indexation missing bracket issue
** Fixed initial MODBUS TCP request count validation
** Fixed PIN 3/4 direction switching over MODBUS TCP
** Fixed MODBUS data to MQTT socket closing issue when connection fails
** Fixed MODBUS alarm configuration deletion
** Fixed DNP3 master not working after FW upgrade with 'keep settings'
** Fixed DNP outstation not returning error messages
** Added missing SNMP objects: mobile IP, data sent/received today
** Fixed MQTT Publisher 'Remote address' field validation
** Fixed long interface name support for Azure IoT Hub
** Increased maximum Azure IoT Hub 'Connection String' length to 4096 characters
** Fixed missing sent/received data issue
** Fixed URL input field length validation
** Fixed admin login issue after upload of backup from a device with older firmware versions
** Fixed MAC address formatting in Events reporting messages
** Fixed Events reporting DHCP lease message spam, when no new lease is added
** Fixed logging crashing after downloading Troubleshoot file
** Made Wake on LAN visible only on devices with Ethernet ports
** Fixed Traffic log file transfer to FTP server
** Fixed Web Filter service reloading after a host list file is uploaded
** Fixed access denied messages when sending JSON-RPC requests from root user
** Fixed error message display about duplicated intervals in Profile scheduler
** Fixed FW upgrade with 'keep settings' migration issue for Access Control's 'Fail count' and 'Device port' fields
** Corrected OSPF Routing card values, value positions and names
** Fixed global secret instances not being removed when there are no IPsec instances
** Fixed uploaded file remove icon not staying in position on hover
** Fixed Overview card collapse issue that made it unresponsive after too many clicks
** Removed WAN6 interface from the Overview page
** Fixed mobile IPv6 display in Events Reporting status messages
** Fixed Bridge mode when DNS2 is not available
** Fixed PAP/CHAP username and password fields not saving in interface edit window
** Fixed sending email without secure connection for providers that support such an option
** Fixed 'N/A' parameter showing up in SMS Utilities monitoring status message
** Fixed Call Utilities Events Log message for reboot rule
** Fixed SMS command validation for no-authorization option
** Fixed MODBUS SMS alarms 'Enable' option saving
** Fixed running RMS with no SIM card inserted issue
** Fixed firmware available on server version checking issue
** Fixed CVE-2020-15078 openvpn vulnerability
** Fixed storage calculation for packages
** SMS Utilities: enhanced service security
** Fixed firmware deletion after leaving the page
** Fixed setup wizard redirect after LAN IP change
** Fixed various validation bugs, typos, option hints & alignments
** Fixed multiple IPv6 configuration field validations
** Fixed unnecessary SIM switch issue when Multi-APN is configured
** Fixed MODBUS TCP slave modem not starting after switching SIM cards
** Fixed PDP logging for Verizon operator
** Added multiwan support for Wireguard default route
** Fixed wireless signal strength display when no clients are connected
** Fixed loss of connectivity for clients when router is in STA+AP mode
** Added validation that prevents automatic connection to first unencrypted WiFi AP when using MULTI AP
** Fixed Wifi Scanner data not being stored in certain scenarios
** Fixed WiFi scanner not turning on after FW upgrade with 'keep settings'
** Fixed Hotspot user group limit not resetting on specified time
** Removed an RMS error message when no Hotspot users were created
** Fixed Hotspot landing page image upload issue
** Fixed restoring GPS HTTPS options after FW upgrade with 'keep settings'
** Fixed missing NMEA sentences
** Fixed NMEA cache sentence calculation
** Fixed 'outside/inside range' condition for AVL I/O Analog input trigger
** Fixed I/O Juggler external modem recognition
** Fixed flash driver reformatting after memory shrink
** Fixed DLNA package installation issue
** Changed Media Directories field to be required
** Fixed SAMBA fields value display
** Fixed relay output value display in I/O Juggler condition page
** Fixed I/O Juggler's WiFi rule not enabling or disabling WiFi interfaces
** Fixed I/O Juggler's double delete issue on I/O Juggler action and condition instances
** Fixed I/O Juggler's incorrect I/O status messages
** Fixed APN migration if APN was selected from APN list on legacy firmware
** Fixed RIP configuration migration from legacy firmware versions
** Fixed Wireguard interface status setting migration from legacy firmware versions
** Fixed default config options for SSH and Web access SMS Utilities rules
** Fixed POST/GET SMS listing by state
** Fixed automatic port open after RS232/RS485 Over IP server & bidirect configuration changes
** Fixed 'iostatus' SMS rule
 
===<b>[[Media:RUT9_R_00.07.01.4_WEBUI.bin|RUT9_R_00.07.01.4]]</b> | 2022.02.25===
 
* <b>Improvements</b>
** Increased Port Forwards rule max name length
** Added a new '%it' parameter for UTC time in ISO 8601 format to I/O Juggler
** Improved RS232 Port and Timeout validation
 
* <b>Fixes</b>
** Added missing bracket to the end of MODBUS messages
** Fixed preserving the contents of /etc/luci-uploads/ after FW upgrade with the 'Keep all settings' option
** Fixed IPv4-Gateway column showing empty values in the Status -> Routes page
** Fixed firewall extra option validation
** Fixed Hotspot enable button validation
** Removed invalid network interface selections from the "Network" dropdown in the Wireless interface configuration page
** Fixed 3G led animation issue
** Fixed Hotspot 2.0 status display in the System -> Status page
** Changed the logic of uploading files to the modem
** Fixed usage of custom headers in I/O Juggler HTTP action
** Fixed 'verify' option parsing for I/O Juggler
** Fixed OpenVPN server configuration with password authentication
** Fixed NTP interval length validation
** Fixed network interface enable after Drag & Drop
** Updated NTP client interval to 24h
** Fixed connection to whitelist carriers
** Fixed Passthrough mode when DHCP is disabled
** Fixed 'Deny data roaming' feature
** Fixed mobile blocking dependency on region
** Disabled Ping To DNS functionality when Bridge/Passthrough mode is enabled
 
===<b>[[Media:RUT9_R_00.07.01.2_WEBUI.bin|RUT9_R_00.07.01.2]]</b> | 2022.01.04===
 
* <b>New features</b>
** DFOTA modem upgrade system for Quectel modems
 
* <b>Improvements</b>
** Removed L2TP section title prefixes
** Added necessary/forced module firmware updates to handle AT&T network update
 
* <b>Fixes</b>
** Fixed IPSec crashing issue using mobile
** Fixed FW flashing when chip is in unknown state
** Fixed CPU usage percentage display in the Overview page
** Fixed FOTA timeout issue when server does not respond
** Fixed installation of backup packages
** Fixed mobile data limit display after profile change
** Fixed Bridge mode without multi-APN
** Fixed multi mobile interface checking
** Fixed error handling when the modem is not responding
** Prolonged autoconnect setting timeout
 
==='''RUT9_R_00.07.01.1''' | 2021.11.22===
<b>Note:</b> Firmware version RUT9_R_00.07.01.1 released on 2021.11.22 was removed due to an issue with IPsec tunnel while using mobile connection.
----
* <b>Fixes</b>
**Fixed image signature addition
 
===<b>RUT9_R_00.07.01</b> | 2021.11.18===
<b>Note:</b> Firmware version RUT9_R_00.07.01 released on 2021.11.18 was removed due to an issue with keep settings functionality.
----
* <b>New features</b>
** Load Balancing Rules
** 802.11s based wireless mesh network support
** Multiple Wireless AP feature
** Tinc VPN
** German language support
** Manual-Auto operator select
 
* <b>Improvements</b>
** Improved WebUI functionality when multiple browser tabs are open
** Updated base to OpenWrt version 21.02
** Updated kernel to version 5.4.141
** Updated mtd-utils to version 2.1.2
** Updated busybox to version 1.33.1
** Updated ubus to version 2021-06-3
** Updated ubox to version 2020-10-25
** Updated rpcd to version 2021-03-11
** Updated opkg to version 2021-06-13
** Updated fstools to version 2021-01-04
** Updated wwan to version 2019-04-29
** Updated ethtool to version 5.10
** Updated uhttpd to version 2021-03-21
** Updated ppp to version 2020-10-03
** Updated odhcpd to version 2021-07-18
** Updated hostapd to version 2020-06-08
** Updated dropbear to version 2020.81
** Updated dnsmasq to version 2.85
** Updated netifd to version 2021-07-26
** Updated firewall3 to version 2021-03-23
** Updated libjson-c to version 0.15
** Updated libevent2 to version 2.1.12
** Updated mac80211 to version 5.10.42-1
** Updated wireless-regdb to version 2021.04.21
** Updated binutils to version 2.35.1
** Updated gdb to version 10.1
** Updated strace to version 5.10
** Updated trace-cmd to version 2.9.1
** Updated valgrind to version 3.16.1
** Updated ath10k-ct-firmware to version 2020-11-08
** Updated procd to version 2021-02-23
** Updated iw to version 5.9.8
** Updated iproute2 to version 5.11.0
** Updated iptables to version 1.8.7
** Updated nettle to version 3.6
** Updated libpcap to version 1.9.1 rel3
** Updated elfutils to version 0.180
** Updated cryptodev-linux to version 1.11
** Updated linux-firmware to version 20201118
** Updated util-linux to version 2.36.1
** Updated openwrt-keyring to version 2021-02-20
** Updated mtd to version rel26
** Updated fwtool to version 2019-11-12
** Updated ca-certificates to version 20210119
** Updated wireguard-tools to version 1.0.20210223
** Updated iwinfo to version 2021-04-30
** Updated ipset to version 7.6
** Updated gre to version rel12
** Updated wolfssl to version 4.7.0
** Updated ustream-ssl to version 2020-12-10
** Updated uclient to version 2021-05-14
** Updated readline to version 8.1
** Updated mbedtls to version 2.16.11
** Updated libusb to version 1.0.24
** Updated libunwind to version 1.5.0
** Updated libubox to version 2021-05-16
** Updated libnl-tiny to version 2020-08-05
** Updated libnftnl to version 1.1.8
** Updated libiconf-full to version 1.16
** Updated libbsd to version 0.10.0
** Updated gmp to version 6.2.1
** Updated ulogd to version rel6
** Updated sqm-scripts to version 1.5.0
** Updated ntpclient to version rel14
** Updated nmap to version 7.80
** Updated curl to version 7.77.0
** Updated zerotier to version 1.6.5
** Updated xtables-addons to version 3.13
** Updated xl2tpd to version 1.3.16
** Updated stunnel to version 5.59
** Updated strongswan to version 1.0.13
** Updated sstp-client to version 1.0.13
** Updated pptpd to version rel5
** Updated openvpn to version 2.5.3 rel2
** Updated ntpd to version rel3
** Updated net-snmp to version rel2
** Updated mosquitto to version 2.0.11
** Updated miniupnpd to version 2.2.1 rel 3
** Updated etherwake to version rel5
** Updated libzip to version 1.7.3
** Updated libgpg-error to version 1.39
** Updated glib2 to version 2.66.4
** Updated libnetfilter-conntrack to version 1.0.8
** Updated libnetfilter-log to version rel3
** Updated lzo to version rel4
** Updated nghttp2 to version 1.43.0
** Updated openvpn-easy-rsa to version 3.0.8 rel3
** Updated iperf to version rel2
** Updated iperf3 to version 3.10.1
** Updated e2fsprogs to version 1.45.6
** Updated fuse to version 2.9.9
** Updated udprelay to version 2020-02-26
** Updated qmicli to version 1.28.2
** Updated pcre to version 8.45
** Updated libsmpp34 to version 1.14.1
** Updated libiwinfo to version 2.1
** Added netifd library for additional information related to network interfaces
** Updated openssl to version 1.1.1l
** Updated privoxy to version 3.0.32
** Added ACL reload method for sessions
** Added 'Advertisement interval' field to the VRRP configuration window
** Added a PPTP-to-WAN Zone Forwarding rule when default route is enabled on PPTP client
** Added email user group validation for sendind test emails with Events reporting
** Added an event logging feature for Ping Reboot events
** Improved file/section deletion logic: now files are also deleted after deleting a related config section
** Improved package deletion logic
** Added the possibility to configure multiple reboot times in one Reboot Scheduler configuration instance
** Updated 'External system log server' field validation to accept IPv6 addresses
** Added redirect to Overview page after login
** Added WebUI session timeout after user inactivity
** Added placeholder text to dropdown menus
** Improved multi-select design and functionality
** Added Unix timestamp, local ISO time, UTC time to Modbus
** Added info message when selected file cannot be uploaded
** Improved IPsec throughtput
** Added IPSec "Compatibility mode" configuration support
** Made SNMP 'Community name' option editable
** Added the option to delete configurations to the SMS Utilities 'UCI' rule
** Added 'hour', 'week day', 'month day' slelection options to SMS Limit configuration
** Added Lithuanian and Verizon APNs
** Added modem selection for the 'Send SMS' option in Auto Reboot settings
** Added the possibility to get total data usage value without specifying time interval via ubus
** Added return SIM count command
** Added new configuration options to the Failover feature
** Changed Failover page availability from Advanced only both advanced and basic
** Made Failover Interfaces table rows draggable when in 'Load Balancing' mode
** Changed Failover page 'Ratio' fields to a smaller size
** Added the possibility to allow multiple Hotspot users to log in with the same SMS OTP
** Added 'Duplicate passwords are not allowed' error message to Hotspot landing pages
** Added 'Allow password duplicates' field to the Hotspot configuration page
** Improved wireless frequency option layout
** Added an indication to the GPS map when GPS service is disabled
** Added external modem support for the 'Mobile Usage' graph
** Added check to refuse firmware lower than 7.0 on devices with Micron flash
** Added I/O support to SNMP
** Removed ubus list method due to security reasons
** Added MODBUS "%I, %T, %S, %r, %n" support to MODBUS Data Sender
** Removed search engine site crawling
** Improved IPSec "Local/Remote source" validation
** Added Firewall "all" and "custom" protocol options
** Added Backup file size limit of 2 MB
** Improved basic/advanced mode changing
** Improved Wireguard "IP Addresses" field validation
** Added language download support from language selection section
** Added PPTP "Client to client" configuration support
** Made DDNS "username", "password", "host" fields optional
** Added SSTP "Default route" configuration support
** Added SMS Limit hour, week day and month day support
** Added Passthrough "Leasetime" and "Unit" configuration support
** Added Call Utilities "Active Timeout" configuration support
** Added support for PL2303GC serial to USB chip
** Added bgscan feature to wpa_supplicant
** Optimized Wireless device status information requests in all WebUI pages
** Added "Topology state" support to Events Reporting
** Added GPS AVL "Don't Contain Connection" and "Retry on Fail" configuration support
 
* <b>Fixes</b>
** Made RMS 'Connect' button disabled when a connection attempt is already in progress
** Added validation for TLS Clients 'Private network' option
** Fixed the validation range for MTU fields
** Fixed removing firmware image file after leaving the fimware upgrade page
** Fixed network selection list for Traffic Logging - added all available LAN networks
** Fixed DHCP Options validation
** Fixed configuration profile date display
** Fixed blank page after invalid URL in login page
** Fixed TR-069 related firewall rule loading
** Fixed remote subnet netmask validation issues for the GRE Tunnel configuration
** Fixed WebUI section toggle
** Fixed package installation modal layout
** Fixed current page values showing up in login page username field
** Fixed the possibility to create section with a name that is already in use in the same config file
** Fixed OpenVPN username and password deletion when deleting configuration instance
** Fixed session closing issue for the user whose password was just changed
** Updated MODBUS credential validation
** Updated MQTT credential validation
** Fixed DNS 'Rebind protection' setting when switch is disabled
** Updated libgcrypt to version 1.9.3 to fix CVE-2021-33560
** Fixed CVE-2021-33624, CVE-2021-29648 vulnerabilities
** Fixed DHCP 'Lease time' and 'Unit' option saving over the Setup Wizard LAN page
** Fixed Reboot Scheduler not removing crontab file after disabling the rule
** Fixed OpenVPN 'Extra options' field validation to allow a space character
** Added table drag and drop functionality to the Firewall's Traffic Rules page
** Fixed DNP3 Outstation crash caused by non-void function returning no value
** Fixed RMS 'Copy' button functionality
** Fixed gsmd deamon crashing after modem restart
** Fixed gsm memory leak
** Fixed WCDMA band names for MEIG modules
** Fixed SMS Gateway loading screen issue when sending an SMS message
** Fixed mobile data database error after upgrading firmware with the 'Keep settings' option
** Fixed rpcd memory leak issue
** Fixed network information gathering
** Fixed 3G LED not being active in 3G mode
** Fixed data limit accuracy issue
** Fixed SIM Switch back to default SIM crash loop when SIM1 is disabled
** Removed unused SIM Switch struct objects
** Fixed incorrect loading after saving Failover configuration
** Fixed escaping '#' symbol from hotspot username and password fields
** Fixed NTP GPS Synchronization swith to enable GPS service
** Fixed MODBUS Serial Master crash when requesting a 4-byte datatype from a 2-byte data payload
** Added a check if DNP3 is installed for 'Serial type' option
** Fixed Storage Memory Expansion issues related to upgrading from version 6.X with the 'Keep settings' option
** Patched CVE-2021-40528 vulnerability
** Patched CVE-2021-40490 vulnerability
** Patched CVE-2020-16120 vulnerability
** Fixed VLAN section creation
** Returned Interfaces "Port priority" option
** Fixed missing Content-Type header to initial WebUI response
** Fixed RIP information parsing in status page
** Fixed OpenVPN IPv6 netmask validation
** Fixed SNMP Trap Settings Host/IP field validation
** Fixed Cumulocity authentication reset
** Fixed Events Reporting rule saving
 
==='''[[Media:RUT9_R_00.07.00.2 WEBUI.bin|RUT9_R_00.07.00.2]]''' | 2021.10.19 ===


* <b>Fixes</b>
* <b>Fixes</b>

Latest revision as of 13:26, 20 November 2024

RUT9_R_00.07.00.2 | 2021.10.19

  • Fixes
    • Fixed NMEA sentence validation for Meig modems

RUT9_R_00.07.00 | 2021.07.16

  • New features
    • New, RUTX-like WebUI style
    • New WebUI based on Vue.js 2.6.12
    • RutOS updated to OpenWrt 19.07.7 base
    • DNP3 Master and DNP3 Oustation
    • 'Restore to user's defaults' SMS Utilities rule
    • DHCP Relay AT command
  • Improvements
    • Updated firewall to release 3
    • Updated kernel to version 4.14.221
    • Updated uhttpd to version 2020-10-01
    • Updated xtables-addons to release 9
    • Updated mwan to version 2.8.14
    • Updated pcre to version 8.44
    • Updated curl to version 7.74
    • Updated sqlite to version 3.33
    • Updated ncurses to version 6.2
    • Updated OpenSSL to version 1.1.1k
    • Added full MODBUS register address expansion specifier for Data to Server
    • Added full MODBUS register address legend
    • Added Client ID option for the MQTT protocol in Data to Server
    • Improved Data to Server sleeping accuracy
    • Improved Data to Server username validation; now space is allowed
    • Added firmware version OID to the SNMP service
    • Added IP address family option field to the SNMP page
    • Added SNMPv6 section to the SNMP Communities page
    • Renamed the 'System -> Users' page to 'System -> System Users'
    • Moved password changing option to the 'System -> System Users' page
    • Switched to ar8216 driver
    • Added IPsec XAUTH support
    • Improved OpenVPN updown, init scripts to write info about instance in JSON
    • Added AES-256-GCM encryption support to OpenVPN
    • Added extra configuration parameters to DMVPN
    • Added PSK conversion to DMVPN and single PSK types
    • Improved Package Manager package installation, deletion and dependencies
    • Improved Package Manager download process over FOTA
    • Added new Input/Output values manageable over RMS
    • Added IPv6 traffic logging
    • Made 'Network -> Failover' and 'Network -> Interfaces' page data draggable on multiple browsers
    • Added Input/Output Post/Get URL parameter t_time changing delay and time to seconds or miliseconds
    • Added message storage management by config value
    • Improved QMI error handling and status tracking
    • Turned on modem in preinit for correct power-on sequence
    • Added Post/Get feature to turn mobile data on/off
    • Added the possibility to use 2gonly/3gonly/4gonly arguments for cellular service command alongside current 2g/3g/lte arguments
    • Added "Phone number" and "Message" fields for "Send SMS" option
    • Added "Host to ping from SIM1" and "Host to ping from SIM2" fields
    • Added support for multiple USB to Serial adapters
    • Added option to send SMS warning messages to Hotspot users authenticated with SMS OTP when specified amount of data is used up
    • Added "send analog input" option to TAVL settings
  • Fixes
    • Added glib2 patch to fix CVE-2019-13012 vulnerability
    • Added ntfs-3g patch to fix CVE-2019-9755 vulnerability
    • Added WolfSSL patch to fix CVE-2021-3336 vulnerability
    • Added Busybox patch to fix CVE-2018-1000500 vulnerability
    • Added netifd, odhcp6c IPv6 routing loop on point-to-point links patches to fix CVE-2021-22161 vulnerability
    • Fixed Android clients IPsec MTU/MSS size
    • Fixed wrong IPsec DPD value saving
    • Changed IPsec PSK maximum length to 128 symbols
    • Fixed SSTP remaining up after package removal
    • Fixed DMVPN crypto_proposal write to config
    • Fixed I/O Juggler's SMS sending to correct group
    • Fixed I/O Scheduler's relay state issue
    • Added I/O direction check while changing IOs via I/O Post/Get
    • Fixed float endianness mismatch on some devices MODBUS TCP Master, MODBUS Serial Master
    • Fixed UPnP issue that caused config changes to apply only after service restart
    • Fixed WebUI files caching when upgrading firmware
    • Fixed WebUI date display format
    • Fixed MODBUS returning incomplete MAC address data
    • Fixed GPS time synchronization for DST regions
    • Fixed depleting IPv6 RA timeout when the ISP doesn't send RA updates
    • Added "Transaction timed out" error handling
    • Fixed PPPOE connection loss when wrong session PADT packet arrives
    • Added gcont object tracking and info update if this service is restarted
    • Fixed default SMS storage
    • Fixed SMS warning sending after Mobile Data Limit change
    • Fixed DHCP relaying over mobile networks
    • Changed PIN code maximum length to 8 symbols
    • Fixed 'I/O status' message to include correct Input/Output name based on info in ubus ioman objects
    • Fixed 'Over IP' serial type's UDP issue in client mode
    • Fixed DLNA connections count total in statistics page
    • Fixed WiFi Hotspot's Walled Garden issues
    • Fixed WiFi Hotspot data logging issues
    • Fixed P2P group information processing vulnerability in wpa_supplicant
    • Added validation to Walled Garden Address list field
Retrieved from "https://wiki.teltonika-networks.com/index.php?title=Template:Networking_rut9xx_firmware_change_log&oldid=137249"