CNET is reporting that Apple has a software fix in place for the recently discovered and exploited security hole in iOS. Currently, the hole is being used to allow users to jailbreak their iOS devices via a webpage, but the venerability could easily be used for more nefarious means. On Wednesday an Apple spokeswoman said […]
" />

Quick Note: Fix for iOS Jailbreak Vulnerability Loaded Into the Breach for Release

CNET is reporting that Apple has a software fix in place for the recently discovered and exploited security hole in iOS. Currently, the hole is being used to allow users to jailbreak their iOS devices via a webpage, but the venerability could easily be used for more nefarious means.

On Wednesday an Apple spokeswoman said in a statement, “We’re aware of this reported issue, we have already developed a fix and it will be available to customers in an upcoming software update.”

Apple declined to say when the update would be pushed out.

Just the other day Apple has stated that they were investigating the venerability, but they have apparently worked around the clock to plug the hole.

There are two distinct vulnerabilities in the iPhone uncovered with the jailbreak software’s release, principal analyst Charlie Miller of Independent Security Evaluators told CNET Tuesday. One flaw is in the way the browser parses PDF files, enabling the code to get inside a protective sandbox, and the other hole allows code to break out of the sandbox and get root, or control, privileges on the device.

Again, this isn’t just to rain on the jailbreakers parade, this is also intended to protect other users that from malicious exploitation of their device. Nonetheless, the fix is expected to be included in the next update, presumably iOS 4.1.

Continue reading:

TAGS: