Mobile, Endpoint Security

Apple patches iOS jailbreak vulnerability

Apple this week issued a new security update that addresses a zero-day vulnerability enabling iOS users to jailbreak their devices.

The company has patched CVE-2020-9859, a memory consumption issue that can result in arbitrary code execution with kernel privileges.

The fix was made in iOS 13.5.1 and iPadOS 13.5.1 for iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later and iPod touch 7th generation. The same bug was also repaired in macOS Catalina 10.15.5 and macOS High Sierra 10.13.6; tvOS 13.4.6 for Apple TV 4K and Apple TV HD; and watchOS 6.2.6 for Apple Watch Series 1 and later.

The Apple jailbreak made available last month by the Unc0ver hacking group after the vulnerability was discovered by one of its members, @Pwn20wnd. Jailbreaks are hotly anticipated events for certain tech enthusiasts and security researchers because they allow them to circumvent protections in order to probe more deeply into their devices, and customize them or add programs. However, they can sometimes also expose security issues -- although on its official website, the Unc0ver group has said that its jailbreak does not introduce any new vulnerabilities.

prestitial ad