Apple Releases iOS 9.3.4 With Important Security Fix [Update: Jailbreak Patched]

[69Mustang]

It's not necessarily about it actually getting exploited as much as it being in existence and in the wild so to say. If it's there and it's known and someone could abuse it (even if no one really does) it's on Apple to address it. We all know that should one day someone actually exploit something before Apple patches it, everyone will be all over Apple for it, no matter how rare (even if just plain never) it happened in the past.

This is definitely a more reasonable and thoughtful statement than your previous one. Bolded: That happens all the time and will continue to happen. Jailbreaks wouldn't be possible if without someone exploiting a security hole before Apple patches it. The next jailbreak for iOS 10 will happen because someone will exploit a security hole before Apple patches it. It's part and parcel of software development. They will jailbreak, Apple will patch. Wash, rinse, and repeat.

 

[Dave Walker]

The reports of bricking are worrying. No way I'm installing this yet.

 

[MH01]

What real security issue? What severe security hole? Afaik, no jailbreak exploit has been used as an attack vector against iOS. Are jailbroken phones less secure than regular phones? I'd say yes, but that's a consequence of loading software from outside sources. Not a consequence of the jailbreak exploits. Is patching security holes the best solution for iOS users? Undoubtedly yes. But what you're doing is tantamount to fear mongering and concern trolling; equivalent to "but think the children".

and the kittens.....every JB kills a kitten somewhere

 

[owen.meredith]

"Apple credits Team Pangu with discovering a vulnerability related to a memory corruption issue." - eheheheh

 

[white4s]

the jailbreak isn't even an untethered one so why are people making this update such a big deal

 

[Cayden]

Until Apple allows Tethering app on App Store, I will need to be jailbreaking.

I've always been confused by this. Do carriers not automatically allow this? I've never had an issue with AT&T and tethering, just turn my computer on and select iPhone in Network Settings

 

[sbailey4]

Same here on an iPhone 6 128GB and an iPad Air 64GB. It got far enough in the update to effectively brick the iPad before refusing to continue.

Interesting I got the 3194 error via iTunes but once I removed the iOS 9 beta profile (the new one that was available for like 1 day not the expired one) it installed fine.

Did you try to update by iTunes?


iOS 9.3.3 final beta is the same build as the release version (13G34).

Right I know that. that s why I never got the release because "already up to date"

I was on the final beta for both Air 2 and 6s as well.

That is odd. So no idea why I would have gotten the full 1.5gb download vs 26mb. Anyway decided to just use iTunes so I would have the IPSW file handy since had to download the full deal anyway.

 

[pat500000]

Then jailbreaking isn't for you - and that's fine.

My first smartphone was an Android phone. I've found that I prefer stock iOS to Android. However I prefer jailbroken iOS to stock iOS. As to why... see above.

[doublepost=1470337031][/doublepost]

Given they credit "Team Pangu" with discovering the one security bug this fixes, I'd say they're doing exactly that.

just noticed that.

 

[69Mustang]

and the kittens.....every JB kills a kitten somewhere

Please don't jailbreak. I don't want to die.

 

[DotCom2]

delete
[doublepost=1470338009][/doublepost]

The ipsw file is not being signed by Apple. You can try updating OTA.

THANK YOU SOOOO MUCH! It's now working!

 

[palmerc]

So this will secure my device from jailbreak

The jailbreak is the narrow view. A broader view is Apple's security team just had a serious security issue pointed out to them. A flaw that a nation state or nefarious party might exploit.

 

[krgraham]

Looks like Apple fixed the problem and update is now proceeding.

Lesson learned -- don't be the first in line for updates.

 

[DotCom2]

Looks like Apple fixed the problem and update is now proceeding.

Lesson learned -- don't be the first in line for updates.

When will I ever learn this!

 

[cableguy84]

My battery life is great after this update

 

[RedOrchestra]

A flaw that a nation state or nefarious party might exploit.

YEAH, like that untoward guy in Tajikistan drilling down on that unsuspecting soul in Des Moines as . we . speak.

 

[tech3475]

I can confirm as of posting that Apple are still signing 9.3.3, but you will have to get the ipsws elsewhere.

 

[b0fh666]

I can confirm as of posting that Apple are still signing 9.3.3, but you will have to get the ipsws elsewhere.

same here.

bye bye ios10 beta, hope to see you again soon.

 

[eoblaed]

You have cat to be kitten me. I just freaking updated to 9.3.3 yesterday, now another dreadful update! Damn you Apple.

Tap a couple of update buttons, wait a minute or so, and it's done.

Not that onerous of a task.

Also: not Apple's fault you waited until yesterday to rev to 9.3.3.

 

[6836838]

no beta? that was low even for apple.

Well no SDK changes so why would they?

 

[palmerc]

YEAH, like that untoward guy in Tajikistan drilling down on that unsuspecting soul in Des Moines as . we . speak.

Well, if there is a lesson from Edward Snowden... assume it already happened. That guy assumes everything is hot-mic'd and types in his password with a blanket over his head.

 

[C DM]

This is definitely a more reasonable and thoughtful statement than your previous one. Bolded: That happens all the time and will continue to happen. Jailbreaks wouldn't be possible if without someone exploiting a security hole before Apple patches it. The next jailbreak for iOS 10 will happen because someone will exploit a security hole before Apple patches it. It's part and parcel of software development. They will jailbreak, Apple will patch. Wash, rinse, and repeat.

I didn't explicitly say there but what I was saying is if someone exploits it in a malicious way that affects more typical users, and/or in a way that would give government organizations or other organizations some way to access devices or do something else with them.

 

[RedOrchestra]

That guy assumes everything is hot-mic'd and types in his password with a blanket over his head.

Well, I suspect that's what living in Mother Russia, without any hope of going home to mother, will do to you.

Come to think of it, Eddie probably has a lot of "Where's my blankie" moments in his chosen homeland.

 

[C DM]

Well, I suspect that's what living in Mother Russia, without any hope of going home to mother, will do to you.

I think that assumption on his part came about before he even ended up on the run and in Russia (basically in relation to his work and related findings).

 

[rjohnstone]

I've always been confused by this. Do carriers not automatically allow this? I've never had an issue with AT&T and tethering, just turn my computer on and select iPhone in Network Settings

AT&T actually blocks tethering if you went with their most recent unlimited* plan.

*It's actually very limited. i.e., no tethering and throttling if you use too much.

 

[flyinmac]

Installed on my iPhone 5. Went smoothly. No problems. Phone seems a little smoother now.