Become a MacRumors Supporter for $25/year with no ads, private forums, and more!

Apple Releases iPhone OS 3.1.3: Addresses iPhone 3GS Battery Level Accuracy, App Launching Issues

Toe

macrumors 65816
Mar 25, 2002
1,101
2
APPLE-SA-2010-02-02-1 iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod
touch

iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch is now available
and addresses the following:

CoreAudio
CVE-ID: CVE-2010-0036
Available for: iPhone OS 1.0 through 3.1.2,
iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Playing a maliciously crafted mp4 audio file may lead to an
unexpected application termination or arbitrary code execution
Description: A buffer overflow exists in the handling of mp4 audio
files. Playing a maliciously crafted mp4 audio file may lead to an
unexpected application termination or arbitrary code execution. This
issue is addressed through improved bounds checking. Credit to Credit
to Tobias Klein of trapkit.de for reporting this issue.

ImageIO
CVE-ID: CVE-2009-2285
Available for: iPhone OS 1.0 through 3.1.2,
iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Viewing a maliciously crafted TIFF image may lead to an
unexpected application termination or arbitrary code execution
Description: A buffer underflow exists in ImageIO's handling of TIFF
images. Viewing a maliciously crafted TIFF image may lead to an
unexpected application termination or arbitrary code execution. This
issue is addressed through improved bounds checking.

Recovery Mode
CVE-ID: CVE-2010-0038
Available for: iPhone OS 1.0 through 3.1.2,
iPhone OS for iPod touch 1.1 through 3.1.2
Impact: A person with physical access to a locked device may be able
to access the user's data
Description: A memory corruption issue exists in the handling of a
certain USB control message. A person with physical access to the
device could use this to bypass the passcode and access the user's
data. This issue is addressed through improved handling of the USB
control message.

WebKit
CVE-ID: CVE-2009-3384
Available for: iPhone OS 1.0 through 3.1.2,
iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Accessing a maliciously crafted FTP server could result in
an unexpected application termination, information disclosure, or
arbitrary code execution
Description: Multiple input validation issues exist in WebKit's
handling of FTP directory listings. Accessing a maliciously crafted
FTP server may lead to information disclosure, unexpected application
termination, or execution of arbitrary code. This update addresses
the issues through improved parsing of FTP directory listings. Credit
to Michal Zalewski of Google Inc. for reporting these issues.

WebKit
CVE-ID: CVE-2009-2841
Available for: iPhone OS 1.0 through 3.1.2,
iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Mail may load remote audio and video content when remote
image loading is disabled
Description: When WebKit encounters an HTML 5 Media Element pointing
to an external resource, it does not issue a resource load callback
to determine if the resource should be loaded. This may result in
undesired requests to remote servers. As an example, the sender of an
HTML-formatted email message could use this to determine that the
message was read. This issue is addressed by generating resource load
callbacks when WebKit encounters an HTML 5 Media Element.


Installation note:

These updates are only available through iTunes, and will not appear
in your computer's Software Update application, or in the Apple
Downloads site. Make sure you have an Internet connection and have
installed the latest version of iTunes from http://www.apple.com/itunes/

iTunes will automatically check Apple's update server on its weekly
schedule. When an update is detected, it will download it. When
the iPhone or iPod touch is docked, iTunes will present the user with
the option to install the update. We recommend applying the update
immediately if possible. Selecting Don't Install will present the
option the next time you connect your iPhone or iPod touch.

The automatic update process may take up to a week depending on the
day that iTunes checks for updates. You may manually obtain the
update via the Check for Updates button within iTunes. After doing
this, the update can be applied when your iPhone or iPod touch is
docked to your computer.

To check that the iPhone or iPod touch has been updated:

* Navigate to Settings
* Select General
* Select About. The version after applying this update will be
"3.1.3 (7E18)" or later.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222
 
Comment

Mitthrawnuruodo

Moderator emeritus
Mar 10, 2004
14,044
542
Bergen, Norway
Screen shot 2010-02-02 at 19.29.51.png

Weighing in at 228.1MB...
 
Comment

NathanA

macrumors 6502a
Feb 9, 2008
739
16
It's out now. iTunes is prompting me to download.

As always, jailbreakers and unlockers are encouraged to leave it the heck alone until it has been vetted by Dev Team and the like. :)

-- Nathan
 
Comment

MacRumors

macrumors bot
Apr 12, 2001
50,968
12,466
Apple Releases iPhone OS 3.1.3: Addresses iPhone 3GS Battery Level Accuracy, App Launching Issues

https://www.macrumors.com/images/macrumorsthreadlogodarkd.png




Apple today released iPhone OS 3.1.3 for all iPhone and iPod touch models, addressing several specific bugs as well as offering fixes for a handful of security issues.

This update for the iPhone and iPod touch contains bug fixes and improvements, including the following:

- Improves accuracy of reported battery level on iPhone 3GS
- Resolves issue where third-party apps would not launch in some instances
- Fixes bug that may cause an app to crash when using the Japanese Kana keyboard
Full details on the security updates included in iPhone OS 3.1.3 are available in the associated support document.

Article Link: Apple Releases iPhone OS 3.1.3: Addresses iPhone 3GS Battery Level Accuracy, App Launching Issues
 
Comment

NathanA

macrumors 6502a
Feb 9, 2008
739
16
Yeah, see the entry in the post above that says "Recovery Mode CVE-ID: CVE-2010-0038"?

That means Apple closed off the iBoot vulnerability that both blackra1n and the latest redsn0w (0.9.x) use to jailbreak your phones.

If you have iPhone, iPhone 3G, iPod Touch 1G or 2G, you can downgrade if you accidentially update (there is no news yet as to whether or not 3.1.3 contains a baseband update for 3G/3GS though).

If you have iPhone 3GS (either the earlier OR later/tethered-jailbreak version) or iPod Touch 3G or 2G 8GB "MC" model, and you update, for now you're screwed. No way to downgrade, and no way to jailbreak again.

-- Nathan
 
Comment

hamzab

macrumors 6502
Oct 7, 2008
252
2
Apple You Are Too Late, Your Battery Issues Have Caused Me To Sell My Iphone 3gs!

Now I'm Patiently Waiting For The Iphone 4g! Come Quickly July!
 
Comment

Dainin

macrumors regular
Sep 4, 2009
170
76
They don't mention it, but I'm hoping this along with the itunes update will finally fix my Smart Playlists with Live Updating order issues.
 
Comment

Squonk

macrumors 65816
Mar 15, 2005
1,370
14
It has been quite a while since the last update, hasn't it? Nothing too exciting going on here for my 1G phone...
 
Comment

Clete2

macrumors 65816
Sep 20, 2008
1,071
25
USA
Apple You Are Too Late, Your Battery Issues Have Caused Me To Sell My Iphone 3gs!

Now I'm Patiently Waiting For The Iphone 4g! Come Quickly July!

I exchanged my 3GS because of battery problems (it would 100 -> 70 -> 30 -> 6 all within 10 minutes of use.)... Now I know that there was absolutely nothing wrong with my phone. Oh well, Apple support was snappy about it.

:)
 
Comment
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.