~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
                    Service Pack 5 for ThinPro 7.2 - September 17, 2021
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1. Service Pack 5 for ThinPro 7.2
============================================================================
HP announces Service Pack 5 for ThinPro 7.2. This Service Pack contains bug fixes and security updates for ThinPro 7.2.

2. Support Matrix
============================================================================
Package                Platform                                  Image              
----------------------------------------------------------------------
ThinPro7.2_SP-5.5.xar  t240                                      7.2
ThinPro7.2_SP-5.5.xar  t420                                      7.2
ThinPro7.2_SP-5.5.xar  t430                                      7.2
ThinPro7.2_SP-5.5.xar  t530                                      7.2
ThinPro7.2_SP-5.5.xar  t540                                      7.2
ThinPro7.2_SP-5.5.xar  t628                                      7.2
ThinPro7.2_SP-5.5.xar  t630                                      7.2
ThinPro7.2_SP-5.5.xar  t638                                      7.2
ThinPro7.2_SP-5.5.xar  t640                                      7.2
ThinPro7.2_SP-5.5.xar  t730                                      7.2
ThinPro7.2_SP-5.5.xar  t740                                      7.2
ThinPro7.2_SP-5.5.xar  mt21                                      7.2
ThinPro7.2_SP-5.5.xar  mt22                                      7.2
ThinPro7.2_SP-5.5.xar  mt32                                      7.2
ThinPro7.2_SP-5.5.xar  mt45                                      7.2
ThinPro7.2_SP-5.5.xar  mt46                                      7.2
ThinPro7.2_SP-5.5.xar  "HP ThinPro PC Converter"                 7.2

3. Installation
============================================================================
    HP Recommends using HP Device Manager to install the addon.  More details can be found in the HP Device Manager documentation.

4. Known Issues
============================================================================
    There are no known issues.

5. Contact Information
============================================================================
    For contact and support information, refer to:
    http://www.hp.com/go/thinclient

6. Details
============================================================================

SP5.5
------
Bug Fixes:
	- Fixed an issue which could cause Gateway settings to be reverted to default after reboot when connected with WLAN
	- Fixed an issue which Citrix General Setting UI does not display "Apply" button at default 150% scaled view
	- Fixed an issue with ThinPro 7.2 installation with PC Converter deployment tool when booting to USB Storage device
	- Fixed some instances of AltGr + Key combinations with related Keyboard layouts resulting with wrong key value in local and Citrix
	- Fixed an issue with Numeric Pad Decimal"." separator of Switzerland France Key layout output wrong key value "," in local
	- Fixed an issue with Some Caps + Base key of Switzerland France Key layout output wrong key value in local and Citrix
	- Fixed an issue which Auto Update required manual action to click OK
	- Fixed an issue which primary display may not be configurable when the monitor is connected with the mobile device lid closed
Security Updates:
	- WebKitGTK vulnerability - CVE-2020-13558
	- OpenSSL vulnerabilities - CVE-2021-23840,CVE-2021-23841,CVE-2021-23841,CVE-2021-23840
	- xterm vulnerability - CVE-2021-27135
	- Python regression - CVE-2021-3177,CVE-2020-27619,CVE-2021-3177
	- Python 2.7 vulnerability - CVE-2021-3177,CVE-2021-3177,CVE-2020-27619,CVE-2021-3177,CVE-2021-3177
	- libzstd vulnerabilities - CVE-2021-24031,CVE-2021-24032
	- GLib vulnerabilities - CVE-2021-27218,CVE-2021-27219,CVE-2021-27218,CVE-2021-27219
	- GLib vulnerability - CVE-2021-28153
	- ldb vulnerabilities - CVE-2021-20277,CVE-2020-27840,CVE-2021-20277,CVE-2020-27840
	- OpenSSL vulnerability - CVE-2021-3449
	- WebKitGTK vulnerabilities - CVE-2021-1765,CVE-2020-27918,CVE-2021-1870,CVE-2021-1801,CVE-2020-29623,CVE-2021-1789,CVE-2021-1799
	- GStreamer Good Plugins vulnerabilities - CVE-2021-3497,CVE-2021-3498,CVE-2021-3498,CVE-2021-3497
	- WebKitGTK vulnerabilities - CVE-2021-1871,CVE-2021-1844,CVE-2021-1788
	- GStreamer Base Plugins vulnerability - CVE-2021-3522
	- LZ4 vulnerability - CVE-2021-3520
	- libwebp vulnerabilities - CVE-2020-36331,CVE-2018-25010,CVE-2018-25011,CVE-2020-36330,CVE-2020-36329,CVE-2018-25013,CVE-2018-25009,CVE-2020-36332,CVE-2020-36328,CVE-2018-25014,CVE-2018-25012
	- BlueZ vulnerabilities - CVE-2020-26558,CVE-2020-27153,CVE-2021-3588,CVE-2021-3588,CVE-2020-26558,CVE-2020-27153
	- Nettle vulnerabilities - CVE-2021-3580,CVE-2018-16869,CVE-2018-16869,CVE-2021-3580
Modifications:
	- Add support for Realtek 8852AE Wi-Fi 6
	- Translations for ThinPro 7.2 SP4.8

SP4.8
------
Bug Fixes:
	- Fixed an issue which would leave the system in an unusable state after leaving Imprivata Mode until reboot.
	- Fixed an issue wherein USB devices that were disabled would still be usable by the system. 
	- Fixed an issue with connections on the desktop when in domain mode.
	- Fixed an issue with the taskbar not being on the correct display when closing and opening a laptop lid.
	- Fixed an issue with the taskbar disappearing when using Easy Update. 
	- Fixed an issue with touchscreens when joining a domain.
	- Fixed an issue with scaling on displays with small resolutions, such as 1024x768.
	- Fixed an issue with VNC connections being unstable.
	- Fixed a stability issue with Easy Update.
	- Fixed an issue with the wireless icon when connecting to a network.
	- Fixed a permission issue with the control panel when logged in as a domain admin.
	- Fixed an issue with missing network icons when logged into a domain.
	- Fixed an issue with Imprivata not loading correctly on first boot.

SP3.5
------
Bug Fixes:
	- Fixed an issue around desktop usability when the display is scaled.
	- Fixed an issue with configuring displays under certain conditions.
	- Fixed an issue wherein the brightness was set incorrectly on reboot.
	- Fixed an issue with information logged in an Imprivata session.
	- Fixed an issue with Auto Update when the short name of an ftp server is used.
	- Fixed an issue related to desktop usability in Smart Zero mode when the display is scaled.
	- Fixed an issue with network information displayed in System Information when using a USB-C to RJ45 adapter. 
	- Fixed an issue with network information displayed in System Information when connected via WiFi.
	- Fixed an issue with auto update when deploying a certificate.
	- Fixed an issue with connections configured to auto-start not waiting for networking.
	- Fixed an issue with audio devices not being recognized correctly when connecting to the 3.5mm Microphone Jack on the t630.
	- Fixed an issue where the networking status may show as limited when connected to a WiFi network.
	- Fixed an issue that caused a Citrix session to freeze, disappear, or disconnect intermittently.

Security Updates:
	- CVE-2021-33203,CVE-2021-31916,CVE-2021-3428,CVE-2020-25670,CVE-2021-28972,CVE-2021-29647,CVE-2021-28971,CVE-2021-29155,CVE-2021-3501,CVE-2021-31829,CVE-2021-28950,CVE-2021-28972,CVE-2021-31916,CVE-2021-28651,
	  CVE-2021-28652,CVE-2021-31806,CVE-2021-3560,CVE-2020-25673,CVE-2021-3501,CVE-2021-29155

Modifications:
	- Add support for specifying the domain in the username field when logging into a connection, for example: "mydomain\user". This can be configured by modifying "loginfields/domainAwareUsername" under a particular connection in root/ConnectionType.


SP2.6
-----
New Features:
Bug Fixes:
	- Fixed an issue with auto-starting connections
	- Fixed an issue where sometimes ThinPro would take a while to reboot
	- Fixed multiple issues around display scaling
	- Fixed an issue with usb-update being usable before it was intended to be on first boot.
	- Fixed an issue with battery charge indicator on some third-party platforms.
	- Fixed an issue with displays causing unexpected resolution changes when displays are set to mirror each other.
	- Fixed an issue with system log being filled with repeated messages under certain senarios.
	- Fixed an issue wherein certain updates could not be installed via auto-update.
	- Fixed an issue where the Timezone could not be correctly set.
	- Fixed an issue where icons on the desktop will be missing their picture under certain scenarios.
	- Fixed an issue when connecting to a VMware View Resource via Imprivata, an unexpected dialog may pop up.

Security Updates:
	- CVE-2021-28965,CVE-2020-36314,C:wVE-2021-24000,CVE-2021-23996,CVE-2021-23997,CVE-2021-28963,CVE-2019-14513,CVE-2017-15107,CVE-2021-28211,CVE-2021-28210,CVE-2021-28965,CVE-2021-3410,CVE-2021-1252,CVE-2021-1404,CVE-2021-1405
	- Linux kernel vulnerabilities - CVE-2021-1052,CVE-2021-1053,CVE-2021-1056,CVE-2021-1052,CVE-2021-1053,CVE-2021-1056,CVE-2020-28374,CVE-2021-1052,CVE-2021-1053,CVE-2021-1056,CVE-2021-1053,CVE-2021-1052,CVE-2020-28374,CVE-2020-25704,CVE-2020-28374,CVE-2020-25704,CVE-2020-25704,CVE-2020-28374
	- QEMU vulnerabilities - CVE-2020-11947,CVE-2020-15859,CVE-2020-27821,CVE-2020-28916,CVE-2020-29443,CVE-2021-20181,CVE-2020-15859,CVE-2020-27821,CVE-2020-28916,CVE-2020-29443,CVE-2020-11947,CVE-2021-20181

Modifications:
	- Added a new feature to disable the search functionality in ThinPro's taskbar menu. This is exposed as a new registry key: root/Daskboard/GUI/SearchBox. Setting this to 0 will disable the search box in user mode.
	- Added ability to connect to guest wifi networks through Captive Portal. To enable this, a new registry key has been exposed: root/Network/Wireless/CaptivePortal. Setting this to 1 will enable Captive Portal support. A checkbox has also been added to the user interface when configuring the wireless network. This setting should only be enabled when connecting to a guest network.



SP1.6
-----
New Features:
Bug Fixes:
    - Fixed an issue pertaining to credential configuration with the Connection Manager.
    - Fixed an issue where webcams were not used consistently with ZCentral Remote Boost.
    - Fixed an issue preventing Auto-Update from installing components.
    - Fixed multiple issues around display scaling.

Security Updates:
    - xdg-utils regression - CVE-2020-27748
    - coTURN vulnerability - CVE-2020-26262
    - Open vSwitch vulnerabilities - CVE-2015-8011,CVE-2020-27827
    - tar vulnerabilities - CVE-2018-20482,CVE-2019-9923,CVE-2018-20482,CVE-2019-9923
    - HTMLDOC vulnerability - CVE-2019-19630
    - Pillow vulnerabilities - CVE-2020-35653,CVE-2020-35654,CVE-2020-35655,CVE-2020-35655,CVE-2020-35654,CVE-2020-35653
    - Apache Log4net vulnerability - CVE-2018-1285
    - Dnsmasq vulnerabilities - CVE-2020-25681,CVE-2020-25687,CVE-2020-25682,CVE-2020-25683,CVE-2020-25684,CVE-2020-25685,CVE-2020-25686,CVE-2019-14834,CVE-2020-25684,CVE-2020-25683,CVE-2020-25686,CVE-2020-25687,CV
E-2020-25681,CVE-2019-14834,CVE-2020-25682,CVE-2020-25685
    - PyXDG vulnerability - CVE-2019-12761
    - NVIDIA graphics drivers vulnerabilities - CVE-2021-1052,CVE-2021-1053,CVE-2021-1056,CVE-2021-1053,CVE-2021-1052
    - Sudo vulnerabilities - CVE-2021-3156,CVE-2021-23239,CVE-2021-3156,CVE-2021-23239
    - Apport vulnerabilities - CVE-2021-25682,CVE-2021-25683,CVE-2021-25684,CVE-2021-25683,CVE-2021-25682,CVE-2021-25684
    - ca-certificates update

Modifications:
    - Added a new option to control what ThinPro does when the administrator switches back to user. This option can be configured either via the Customization center or via mclient by setting the appropriate value to:
      root/users/root/switchToUserAction to one of the following values:
            - Logout (default)
            - Reboot
            - None