New Skylake MacBook Pros coming in the fourth quarter.
Apple to Patch Latest Jailbreak Hole in Upcoming Software Update
Earlier this week, the browser-based JailbreakMe.com solution went live once again, bringing a simple new method to jailbreak a number of iOS devices including the iPad 2. The tool has proven popular, with over one million users already having taken advantage of it.
Similar to earlier browser-based jailbreak mechanisms, the latest version takes advantage of a flaw in the way Safari handles PDF files, a vulnerability that could also be exploited by malicious parties. Consequently, it had been expected that Apple would move relatively quickly to patch the hole once it was revealed by the jailbreak procedure.
According to the Associated Press, Apple has indeed confirmed that it will be patching the hole in a future software update, but declined to provide a timeframe for the release of the update.
Fully aware of the potential implications of malware authors exploiting the hole, the jailbreak community has already developed a fix for the issue, which was released into the Cydia Store for jailbroken devices alongside the new technique. Users who have jailbroken their devices, even through the new JailbreakMe.com technique, can thus patch the vulnerability, while non-jailbroken devices will have to wait for Apple's solution to be released.
Similar to earlier browser-based jailbreak mechanisms, the latest version takes advantage of a flaw in the way Safari handles PDF files, a vulnerability that could also be exploited by malicious parties. Consequently, it had been expected that Apple would move relatively quickly to patch the hole once it was revealed by the jailbreak procedure.
According to the Associated Press, Apple has indeed confirmed that it will be patching the hole in a future software update, but declined to provide a timeframe for the release of the update.
Apple Inc. spokeswoman Bethan Lloyd said Thursday the company is "aware of this reported issue and developing a fix that will be available to customers in an upcoming software update."Apple's statement comes after Germany's information technology security agency issued an explicit warning about the "critical weaknesses" in iOS that could result in malware being deployed through infected PDF files.
She declined to specify when the update would be available.
Fully aware of the potential implications of malware authors exploiting the hole, the jailbreak community has already developed a fix for the issue, which was released into the Cydia Store for jailbroken devices alongside the new technique. Users who have jailbroken their devices, even through the new JailbreakMe.com technique, can thus patch the vulnerability, while non-jailbroken devices will have to wait for Apple's solution to be released.
[ 82 comments ]
Top Rated Comments
(View all)
68 months ago
Jailbroke my iPad 2 today, worked too damn well... then I looked around in Cydia and couldn't find anything I wanted that wasn't already coming for free in iOS 5... Guess I'll wait for 4.3.4 to get rid of the jailbreak and Cydia...
68 months ago
My jailbreak lasted a day, didn't see the point to be honest, from the fuss over it.
68 months ago
Apple can work fast when patching stupid JB holes, but we're still stuck with buggy-as-hell beta 2 for iOS 5 after a month.
Where the hell is beta 3, Apple?????
No beta 3 yet for ios 5?
This is it! I am leaving Apple for good.
Where would we all be if Apple released things on their schedule.
This is an outrage. How dare they!
In case you were serious:
May I suggest you contact Apple and PLEASE let them know that your time schedule is of the utmost importance and urgency?
68 months ago
In other news -
Prisons across the nation are trying to keep inmates from escaping...
But actually, I appreciate the jailbreakers for both giving those who are willing to go through the process added functionality, and also exposing flaws in the OS which ultimately makes it more secure. And also challenges Apple to add features that the jailbreakers introduce. Win win really.
Prisons across the nation are trying to keep inmates from escaping...
But actually, I appreciate the jailbreakers for both giving those who are willing to go through the process added functionality, and also exposing flaws in the OS which ultimately makes it more secure. And also challenges Apple to add features that the jailbreakers introduce. Win win really.
68 months ago
I love how apple calls this a "fix"
You do understand that jailbreaks work because they take advantage of a security vulnerability SO HUGE that they can actually rewrite parts of the device operating system, install entire apps that sidestep the normal install process, hack all kinds of system settings...
You don't consider that the tiniest bit dangerous? You'd rather Apple just leave it out there? Surely nobody would ever exploit such a vulnerability for evil, because hackers are all looking out for our best interests, right?
68 months ago
Apple can work fast when patching stupid JB holes, but we're still stuck with buggy-as-hell beta 2 for iOS 5 after a month.
Where the hell is beta 3, Apple?????
Beta 2 has only been out two weeks today.
68 months ago
And please don't come with some safety nonsense arguments. For those of you who can read German, here is what the German BSI has to say about the security of iOS:
https://www.bsi.bund.de/ContentBSI/Presse/Pressemitteilungen/Presse2011/Schwachstelle-im-Apple-Betriebssystem-iOS-06072011.html
So, no, iOS is by NO MEANS safer just because Apple cripples your experience. The mere fact that you can jailbreak iOS by simply visiting a website already negates that argument.
Unless you think that curation means zero security risks (beyond social engineering), I never did and nobody claimed as much. And the German authorities make no reference to Apple's curation in the link you posted.
68 months ago
Sorry, but i respectfully disagree. I have jailbroken iphone, and have everything off...WiFi, 3G, data, location, push. As such 2 day off a full charge, i am still in the 90 percentile.....Jailbroken or not, you just have to be smart about whats on and whats off. Also, use SBSettings and Remove Background Toggle, to always have a wiped-clean multi-tasking pane...nothing should be running when not in use.
My iPhone 4 easily lasts several days with light usage. That's with all those things you had listed turned on. What's the point in having a device with such features if you've got them off all the time?
68 months ago
... its exploiting Apples own flaw that they have known about for a couple of years, but failed to fix.
False.
[ Read All Comments ]
Apple senior vice president Eddy Cue, who oversees services like the iTunes Store, Apple Music, Apple Pay, Siri, iCloud, and Apple Maps, received nearly $60 million in company stock earlier this...
For the last few weeks, MacRumors has been running a special giveaway event, highlighting high-quality luxury bags from manufacturers like Pad & Quill, Intrepid Bag Co, Whipping Post, and...
The Messages App Store has grown to more than 1,650 applications and sticker packs in the nine days since iOS 10 launched to the public, according to new data gathered by Sensor Tower (via...
After announcing that it would move to an algorithm-based feed earlier in February, Twitter recently began rolling out a button to users on its iOS app that allows them to provide feedback for tweets...
Some Mac owners are reporting problems with external monitors and the use of scaled resolutions since installing macOS Sierra earlier this week.
Several MacRumors readers using 4K displays have...
Apple has partnered with e-commerce giant Flipkart to sell the iPhone 7 and 7 Plus in India, where the phones are expected to launch on October 7 (via Mashable).
The online retail partnership...
Apple recently announced several updates to its Beats line of headphones, debuting new wireless Beats Solo3, PowerBeats3, and BeatsX products, all of which take advantage of the company's new W1...
Earlier this year, Apple introduced a new Live Tune-In feature for Siri, which allows the personal assistant to go directly to a live channel in a supported app. As of today, Live Tune-In has gained...
