Apple fixes 3 security flaws used by Pangu jailbreak in iOS 8.1.1; credits Pangu Team


iOS 8.1.1 Logo

Apple today released iOS 8.1.1 with bug fixes and performance improvements. The release also comes with a number of security fixes, including patching exploits used by the Pangu Jailbreak.

The Pangu team confirmed that iOS 8.1.1 kills the Pangu jailbreak, and in a security document, Apple confirmed this as well.

The company lists three security patches in iOS 8.1.1 that were related to unsigned code execution, and credits @PanguTeam for discovering them. The exploits were in the kernel, dyld, and sandbox profiles.

Another security fix in the iOS 8.1.1 update is a privacy loophole that could let an unauthorised user view and send photos from the lock screen.

Here are the details about the vulnerabilities:

dyld

Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later

Impact: A local user may be able to execute unsigned code

Description: A state management issue existed in the handling of Mach-O executable files with overlapping segments. This issue was addressed through improved validation of segment sizes.

CVE-ID

CVE-2014-4455 : @PanguTeam

Kernel

Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later

Impact: A malicious application may be able to execute arbitrary code with system privileges

Description: A validation issue existed in the handling of certain metadata fields of IOSharedDataQueue objects. This issue was addressed through relocation of the metadata.

CVE-ID

CVE-2014-4461 : @PanguTeam

Sandbox Profiles

Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later

Impact: A malicious application may be able to launch arbitrary binaries on a trusted device

Description: A permissions issue existed with the debugging functionality for iOS that allowed the spawning of applications on trusted devices that were not being debugged. This was addressed by changes to debugserver’s sandbox.

CVE-ID

CVE-2014-4457 : @PanguTeam

We’ll have to wait and see how much time it will take the Pangu Team to jailbreak iOS 8.1.1 now that most of the vulnerabilities used in the Pangu jailbreak have been fixed.

It goes without saying that jailbreakers should avoid upgrading to iOS 8.1.1 and be extremely careful while installing jailbreak tweaks.

[via Apple]

Like this post? Share it!