July 18, 2011

Apple has issued a software update that fixes at least three serious security holes in supported versions of its iPhone, iPad, iPod and iPod Touch devices.

The patch targets security weaknesses in the way iOS devices render PDF files. Experts have been warning that attackers could leverage the flaws to install software without warning or permission if users were to merely browse to a malicious site. The update fixes the same vulnerabilities that jailbreakme.com has been using to help people jailbreak Apple’s i-devices.

The Apple update — iOS 4.2.9 or iOS 4.3.4, depending on your device — can be downloaded only from within iTunes. If you are planning to jailbreak your device, visit jailbreakme.com, and then apply the unofficial patch that the Dev-Team released to help jailbreakers protect their phones from further abuse of the vulnerabilities.

4 thoughts on “Apple’s i-Patches Fix Critical iOS Flaws

  1. andy1

    So is there any need to update quicktime on windows? Is this only for the apple products mentioned that read pdf files? I ask because the update comes up with all the itunes and safari check-boxes that I have no need for. I’d just as soon not mess with the quicktime installer if I don’t need to.

  2. stvs

    The jailbreak iOS 4.3.4 update warning that accompanies the PDF Patcher 2 security update:

    iOS 4.3.4 out do not upgrade

    As I predicted 10 days ago, Apple released iOS v4.3.4 today. This does nothing except patch the jailbreakme.com jailbreak from comex and, in the process, patch i0nic’s exploit making it so we cannot jailbreak 4.3.4 untethered. Im not sure if Apple has stopped signing 4.3.3 yet so if you havent then load cydia or tiny umbrella and get your shsh saved off. Additional warning to iPad 2 users. If you have a 3G iPad, even saving the shsh won’t be enough to restore 4.3.3 because the baseband is also under shsh protection now. Wifi only iPad 2′s and all other devices are still protected by shsh storage.

    Again, do not update to this firmware. When iTunes asks if you want to install the new firmware, say no. If you update then you will gain nothing and lose your jailbreak.

    This warning goes for 4.2.9, which is the CDMA version of the patched firmware. Do not install that either.

    And no, this update provides you no new features only closes the jailbreak.

    1. Dennis

      Updated mine, and it bricked my OEM 3GS (not jailbroken and only 10 days old). Apple blames my security software and says I need to disable it. I don’t think so.

    2. qka

      stvs is advising not to update because it eliminates the ability to jailbreak.

      Take his statements with a grain of salt – a lagre grain of salt.

Comments are closed.