Software

Hacker pattern_F_ goes hands-on with Saar Amar’s new kernel vulnerability, demos jailbreak on iOS 14.0

Security researcher Saar Amar on Monday published a proof of concept (PoC) of a kernel-level vulnerability dubbed CVE-2021-30883 that was patched by Apple’s iOS & iPadOS 15.0.2 software updates.

The write-up reignited hope that we’d see a jailbreak for recent iterations of Apple’s mobile operating systems, and perhaps unsurprisingly, some security researchers have already started going hands-on with it.

With iOS 15.0.1 having been available for a while, Apple stops signing iOS 15.0

Downgrade iOS 15

Apple released iOS & iPadOS 15.0.1 on October 1st, marking the first update to the company’s new mobile operating systems with bug fixes. Notably, this update resolved a problem with Unlock with Apple Watch not working correctly with the brand-new iPhone 13 lineup – an exceptionally valuable feature amid a raging pandemic in which mask-wearing has become a common sight.

Now that some time has passed since Apple released iOS & iPadOS 15.0.1, it’s no surprise to see that Apple is closing the signing window for the original iOS & iPadOS 15.0 firmware that launched to the general public just two weeks prior.

After releasing iOS 15 to the general public, Apple stops signing iOS 14.8

Downgrade iOS 15

A couple of Mondays ago, Apple officially released iOS & iPadOS 15 to the general public with a slew of new features for Apple’s mobile device lineup following an extensive beta period throughout the Summer months.

Perhaps unsurprisingly, Apple’s move to launch a new firmware version for its platforms has now been complemented with the unsigning of the previously current firmware — iOS & iPadOS 14.8.

One week after releasing iOS 14.8, Apple stops signing iOS 14.7.1

Apple released iOS & iPadOS 14.8 last Monday to patch serious vulnerabilities that could have been weaponized by hackers to run malicious code on others’ iPhones and iPads via iMessage. Most owners of these devices were advised to update without hesitation, except perhaps jailbreakers, given the gravity of what these vulnerabilities could have entailed.

Now that it’s been a week since that software update, it may come as no surprise that Apple has officially closed the signing window for iOS & iPadOS 14.7.1, the firmware that pre-dated iOS & iPadOS 14.8.

CoolStar teases jailbreak untether after achieving arbitrary code execution post-reboot

Untethered jailbreaks are something of a rarity these days, with most modern jailbreaks being either semi-tethered or semi-untethered variants instead. But a teaser by security researcher Linus Henze just one week ago manifested at least some hope that the community could witness one again soon, at least for the likes of iOS & iPadOS 14.5.1 and below.

And speaking of untethered jailbreaks, Odyssey Team lead developer CoolStar announced via the Sileo / Taurine / Odyssey Discord channel Monday evening that they had successfully achieved arbitrary code execution in a native iOS/iPadOS application after conducting a full reboot of the device. This is, of course, the hallmark feature of an untethered jailbreak.