A few days back, Zimperium zLabs had announced plans to release two security vulnerabilities in iOS 11.2.2 or lower that was patched in iOS 11.2.5.
It was widely speculated that the security exploits could be used to develop a jailbreak for iOS 11.2.2 – iOS 11.2. Currently, you can jailbreak only iOS 11 – iOS 11.1.2 using LiberiOS jailbreak and Elextra jailbreak. So it got people who had upgraded to iOS 11.2.2 – iOS 11.2 excited.
Adam Donenfeld, a security researcher at Zimperium zLabs has revealed in a series of tweets that he hasn’t written an exploit, but someone could write an exploit using “one of the most hidden vulnerabilities” and use LiberiOS jailbreak developer, Jonathan Levin’s, framework to develop a jailbreak for iOS 11.2 – iOS 11.2.2.
1/N Apple has finally acknowledged my kernel heap overflow and fixed it on 11.2.5 (CVE-2018-4109). While I didn’t write an exploit, it’s one of the most hidden vulnerabilities I’ve ever found, and it took me a couple of days to trigger it once I found it!
2/N Is there any conference that would be interested in a detailed explanation + review of some tools I wrote to aid in that research?
3/N if it makes it better in any case, this is accessible from the sandbox (so theoretically if someone plans to write an exploit, @Morpheus______’s jailbreak framework can be used with that).
So that’s great news for jailbreakers who are on iOS 11.2 – iOS 11.2.2. Apple has stopped signing iOS 11.2.2 so it is not possible to downgrade from iOS 11.2.5 unless you’ve saved the SHSH blobs for iOS 11.2.2.
We will keep you posted if there are any updates. Don’t forget to signup for our Daily Newsletter so you don’t miss the latest jailbreak news.