iOS 4 Addresses Over 60 Security Vulnerabilities

205529 ios 4 lock

Apple has posted a new support document outlining the security content of iOS 4, released earlier today. The document covers well over 60 security vulnerabilities addressed with the new release for the operating system behind Apple's mobile devices. Fifty of the security issues addressed involve WebKit, the engine behind Apple's mobile Safari browser included on all iOS devices, while a handful of other issues affect the specific Safari implementation of WebKit in iOS.

One issue addressed in iOS 4 involves the ability of third-party applications to access a user's photo library, indirectly allowing the applications to infer a user's location without explicit authorization via the geolocation information. iOS 4 addresses the issue by modifying the Application Sandbox to prevent direct access to the photo library.

Four of the fixed vulnerabilities affect the operating system's ImageIO framework and could have allowed maliciously crafted BMP, TIFF or JPEG images to lead to security breaches. iOS 4 also addresses a pair of flaws in the Passcode Lock system in which remote locking via MobileMe could result in the password already being entered at the next unlock or unauthorized pairing of a locked device to a computer could occur soon after initial booting following a shutdown in an unlocked state.

iOS 4 also addresses an issue with the Settings application in which a device connected to a hidden Wi-Fi network could incorrectly indicate that is connected to a different network. Finally, an assortment of other issues primarily involving overflow conditions that could lead to crashes or arbitrary code execution have also been fixed in CFNetwork, LibSystem, and libxml.

Related Forum: iPhone

Popular Stories

iOS 17

Apple Releases iOS 17.0.1 and iPadOS 17.0.1 With Bug Fixes, Plus iOS 17.0.2 for iPhone 15 Models

Thursday September 21, 2023 10:28 am PDT by
Apple today released iOS 17.0.1 and iPadOS 17.0.1 updates for the iPhone and the iPad, adding bug fixes to the new software. The iOS 17.0.1 and iPadOS 17.0.1 updates come just a few days after Apple launched iOS 17 and iPadOS 17. The software, which is build 21A340, can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. There is a...
iPhone 15 Pro Lineup Feature

iPhone 15 Models Feature New Setting to Strictly Prevent Charging Beyond 80%

Tuesday September 19, 2023 2:04 pm PDT by
All of the iPhone 15 and iPhone 15 Pro models feature a new battery health setting that prevents the devices from charging beyond 80% at all times when enabled, as confirmed by The Verge's Allison Johnson during a Q&A session today. The new setting is separate from the pre-existing Optimized Battery Charging feature on iPhones, which intelligently delays charging past 80% until a more...
emojipedia 15 1 emoji

Emoji Coming to Future iOS 17 Update Include Shaking Head, Brown Mushroom, Lime, Phoenix and More

Tuesday September 19, 2023 12:43 pm PDT by
As Apple was announcing new iPhone models last week, the Unicode Consortium was officially approving new emoji characters that are set to be added to smartphones starting in 2024. Mockup of new emoji from Emojipedia Approved Unicode 15.1 emoji include phoenix, lime, an edible mushroom, shaking head vertically (as in a "yes" nod), shaking head horizontally (a "no" head shake), and broken...
iPhone 15 Pro Max 5x Optical Zoom Limit Feature 1

Apple Explains Why iPhone 15 Pro Max is Limited to 5x Optical Zoom

Wednesday September 20, 2023 9:52 am PDT by
In an interview with Numerama's Nicolas Lellouche, Apple's VP of camera software engineering Jon McCormack explained why the iPhone 15 Pro Max's tetraprism lens system is limited to 5x optical zoom, instead of 10x like on Samsung's Galaxy S23 Ultra. The interview is in French, so quotes below are computer translated. Apple says the Telephoto lens on the iPhone 15 Pro Max features the...