Apple Issues Emergency iOS Patch to Fix Security Flaw

Posted on August 26, 2019 by Mehedi Hassan in Apple, iOS, Mobile with 6 Comments

Not too long ago, we reported about a new iOS bug that let users jailbreak their iPhones. iOs 12.4 made it possible to jailbreak the latest iPhones after years. The jailbreak was enabled by a security flaw in iOS 12.4 that not only allowed users to jailbreak but also put their security at risk.

Apple had actually fixed the issue in the past after it was first reported by a Google engineer. The company later mistakenly reversed the patch with iOS 12.4, opening up the flaw once again and putting users at risk.

Cupertino has now issued an emergency patch for iOS 12.4, and it’s released iOS 12.4.1 earlier this afternoon. The official changelog for the release notes that the update fixes a security issue, noting “a malicious application may be able to execute arbitrary code with system privileges”.

What is even more interesting is that Apple actually acknowledged the creator behind the jailbreak as part of the fix.  “We would like to acknowledge @Pwn20wnd for their assistance,” Apple said. So it seems like the creator of the jailbreak, @Pwn20wnd, actually worked with Apple to help fix the problem. It’s unclear whether the security flaw was abused by any hackers to exploit iPhone users, though. There have not been any reports of abuse so far, and that’s pretty good to hear — that still doesn’t excuse Apple’s clumsiness here, though.

Tagged with , ,

Join the discussion!


Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Comments (6)

6 responses to “Apple Issues Emergency iOS Patch to Fix Security Flaw”

  1. MikeGalos

    You mean the "bug" that you promoted as a useful feature in "iOS Bug Enables iPhone Owners to Jailbreak After Years" on this site a week ago really WAS a critical security problem?

  2. Thom77

    I wonder if this is the same type of emergency "security" patch Apple released days after Wikileaks revealed there were governmental backdoors in iOS and most other operating systems.

    This "flaw" actually existed for a while on iOS and was finally fixed in 12.3

    You could jailbreak exploiting this flaw for a LONG TIME before 12.3. The jailbreak would reset however if you turned your phone off.

    None of this is anything new. Yet suddenly the sky is falling and emergency patches are being implemented with fear mongering tech "press" reporting on them.

  3. Lordbaal

    If people want to jail break it., Let them. It'll just be at their own risk.

Leave a Reply