Apple Credit Evad3rs on Four Security Fixes in iOS 6.1.3
LIKE
TWEET
SHARE
PIN
SHARE
POST
MAIL
MORE
Posted March 19, 2013 at 6:33pm by iClarified
Apple has acknowledged the evad3rs for discovery of four of the six security issues fixed in iOS 6.1.3, notes MuscleNerd.
Apple gives hat tip to @evad3rs for 4 of the 6 security fixes in 6.1.3 :) http://is.gd/nfspim
dyld Available for: iPhone 3GS and later, iPod touch (4th generation) and later, iPad 2 and later Impact: A local user may be able to execute unsigned code Description: A state management issue existed in the handling of Mach-O executable files with overlapping segments. This issue was addressed by refusing to load an executable with overlapping segments. CVE-ID : CVE-2013-0977 : evad3rs
Kernel Available for: iPhone 3GS and later, iPod touch (4th generation) and later, iPad 2 and later Impact: A local user may be able to determine the address of structures in the kernel Description: An information disclosure issue existed in the ARM prefetch abort handler. This issue was addressed by panicking if the prefetch abort handler is not being called from an abort context. CVE-ID : CVE-2013-0978 : evad3rs
Lockdown Available for: iPhone 3GS and later, iPod touch (4th generation) and later, iPad 2 and later Impact: A local user may be able to change permissions on arbitrary files Description: When restoring from backup, lockdownd changed permissions on certain files even if the path to the file included a symbolic link. This issue was addressed by not changing permissions on any file with a symlink in its path. CVE-ID : CVE-2013-0979 : evad3rs
USB Available for: iPhone 3GS and later, iPod touch (4th generation) and later, iPad 2 and later Impact: A local user may be able to execute arbitrary code in the kernel Description: The IOUSBDeviceFamily driver used pipe object pointers that came from userspace. This issue was addressed by performing additional validation of pipe object pointers. CVE-ID : CVE-2013-0981 : evad3rs
I seriously hope they stay Evad3rs and dont get bought out. It's time "The Good Side" had some help to do whatever we want with the stuff we the AP pay our hard earned cash for.
Sounds like Apple's way of giving Evaders a big FU! Bottom line, cydia tweaks makes this phone better than android. If i didnt have cydia tweaks....id be on an android. Simple.
Like that even matters the update isn't worth updating anyway !!! Jailbreaks are the only reason it's worth having a iDevice .... If we can put up with occasionally have a springboard crash why the think we care about a update ????
Ismael,
There's a lot of dots in there. Is this code?
Could. you post. your phone. just in case. of. emergency? We may need your help. ("We", the people who just have to wait for the next jailbreak)
Ismael,
There's a lot of dots in there. Is this code?
Could. you post. your phone. just in case. of. emergency? We may need your help. ("We", the people who just have to wait for the next jailbreak)
Jailbreak uses security holes to allow "unsigned code" to run. An unsigned code means that the code is not checked in Apple side and the code can be run in system level. If you can run a code in "system" or "root" level, basically its like you are allowing people to enter in your house and do whatever they want. You don't want a stranger in your house. Fortunately, Evad3rs used them as good purposes. However, if some bad hacker used them, they can implement a script that allows any kind of information, such as passwords or credit card information inside the phone to be sent to the hacker.
Why is apple so hell-bent on crushing jailbreaks? I mean there are people who jailbreak not only to download free apps but to customize their iDevices... I mean I used to be a hardcore jailbreaker, but I just gave up with all the stupid updates... I still maintain a jailbreak on my iPad but that's only because apps are typically a lot more expensive on the iPad than on the iPhone.. But I don't get the hostility towards jailbreakers when that's, a lot of the time, why people buy iDevices versus Android products in general.
Joemama, I have exactly the same sentiments.
Most if not all of my apps are legally acquired. I download pirated apps to test if no trial period is available.
If the day come Apple finally closed all exploits for jailbreak, I will not have second thought on switching to Android gadgets.
The reason they are patching these holes is because although Evaders use it for good. Anyone can look to what the Evaders did (like Apple did) and use it for other things. Apple is simply trying to prevent bad people from doing bad things. Hats off to Apple for fixing holes. Hats off to Evaders for finding more and making my life better.
You obviously have no security background. Google search Zero Day and that will answer why they need to close them as soon as they are discovered and publicly known.
You obviously have no security background. Google search Zero Day and that will answer why they need to close them as soon as they are discovered and publicly known.
![New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]](/images/news/93314/93314/93314-160.jpg "New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]")
![Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]](/images/news/93302/93302/93302-160.jpg "Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]")
![AirPods Pro 2 With USB-C On Sale for $189! [Deal]](/images/news/92932/92932/92932-160.jpg "AirPods Pro 2 With USB-C On Sale for $189! [Deal]")
![iPad Mini 6 On Sale for Just $375! [Lowest Price Ever]](/images/news/93207/93207/93207-160.jpg "iPad Mini 6 On Sale for Just $375! [Lowest Price Ever]")
