Security researcher Brandon Azad has released an exploit for iPhones and iPads iOS 12 – iOS 12.1.2. The voucher_swap exploit can be used to build a fake kernel task port which gives one the ability to read and write arbitrary kernel memory.
While we have previously seen an iOS 12 exploit being detailed, that one was only applicable for iPhone X and lower devices. The new one detailed by Brandon Azad, however, is applicable for all A12 Bionic devices as well including the iPhone XS and iPhone XR.
With the exploit being detailed by Azad, it is now up to someone from the jailbreaking community to develop the first public iOS 12 – iOS 12.1.2 jailbreak tool. You should not consider upgrading your jailbroken iPhone or iPad running iOS 11 to iOS 12 based on this exploit alone. It is recommended that you wait until an iOS 12 jailbreaking tool is released to the public.
The A12, now with more kernel code execution; introducing voucher_swap: https://t.co/rVkwo50fgd
— Brandon Azad (@_bazad) January 29, 2019
As a responsible security researcher, Azad had informed Apple about this vulnerability on December 6, 2018, which was duly fixed by Apple with the first beta of iOS 12.1.3 released on December 19th. The same bug was also found by Qixun Zhao of the Qihoo 360 Vulcan Team which he had shared last week.
If interested, you can read about the exploit discovered by Azad in detail over here.
We have already seen the Electra jailbreak team release an updated version of their iOS 11 – iOS 11.4.1 jailbreak based on a new exploit for A9 devices which is more reliable in nature. Here’s hoping that we will see someone from the Electra or Unc0ver team use this exploit to create the first iOS 12 – iOS 12.1 jailbreak.
Are you looking forward to an iOS 12 jailbreak?