Last week Apple released iOS 11.2.5 with support for HomePod, fix for the ChaiOS bug, and several bug fixes and improvements.
Apple had credited the Zimperium zLabs for two security vulnerabilities in iOS 11.2.2 or lower that were patched in iOS 11.2.5. The folks at Zimperium zLabs have announced that they will release the vulnerabilities to the public. This has sparked off speculations that it could lead to the much awaited iOS 11.2.2 jailbreak.
Here are details about the two security vulnerabilities:
The first vulnerability (CVE-2018-4095) is full relative (ASLR bypass) control on the stack in CoreBluetooth that leads to memory corruption over bluetoothd.
The second major vulnerability (CVE-2018-4087) leads to execution of arbitrary code on different crucial daemons in iOS by hijacking the session between each daemon and bluetoothd. Some of the impacted daemons are: SpringBoard, mDNSResponder, aggregated, wifid, Preferences, CommCenter, iaptransportd, findmydeviced, routined, UserEventAgent, carkitd, mediaserverd, bluetoothd, coreduetd and so on.
Zimperium zLabs has acknowledged that Apple was quick to fix the issue in iOS 11.2.5 for iPhone, iPad and iPod touch, and also watchOS – 4.2.2, tvOS – 11.2.5.
I wouldn’t get too excited as they haven’t categorically said that the vulnerabilities could be used to develop a jailbreak. We will probably have to wait for someone like Jonathan Levin, the developer of LiberiOS jailbreak or coolstar, the developer of Electra jailbreak tool to confirm if the vulnerabilities could be used to develop the iOS 11.2.2 jailbreak.
It also means that if they can be used to develop a jailbreak then it would work only with iOS 11.2.2 or lower, and not with the latest iOS software update, iOS 11.2.5, as Apple has already patched the vulnerabilities. So if you’re on iOS 11.2.2 or lower then it is recommended to stay where you are to improve your chances of a jailbreak.
Meanwhile, Russ Cox of Google who has been credited with a kernel exploit that has been patched in iOS 11.2.5 has indicated that he plans to release the exploit. Russ Cox has clarified that he doesn’t plan to release a jailbreak, he plans to release the exploit. He has also added that it may not be useful for “breaking into Apple devices”.
Don’t forget to signup for our Daily Newsletter so you don’t miss the latest jailbreak news.Like this post? Share it!