Apple iOS device users who disable Apple's sandbox security mechanism to have full privileges on iPhones and iPads will have one jailbreak option less after a recent patch relese.
The vulnerability used for the jailbreak was released by Chinese hackers Team PanGu on July 29, for iOS versions 9.2 to 9.3.3.
But Apple has now plugged the vulnerability with the release of iOS 9.3.4.
Apple said the vulnerability compromised a memory corruption issue in the IOMobileFrameBuffer kernel extension, which handles the screen framebuffer.
By causing memory corruption, it is possible to run arbitrary code with full kernel privileges on iOS devices.
Team PanGu used the vulnerability to disable Apple's restrictions on what software can be installed on iPhones and iPads, and to enable third-party package managers and app stores such as Cydia.
Such market places may contain cracked, or illicitly distributed software, as well as malware and other malicious apps, and are outside Apple's usual vetting mechanism.
.png&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
Digital NSW 2025 Showcase
_(1).jpg&h=140&w=231&c=1&s=0)
