Pangu has posted some details on kernel vulnerabilities discovered in iOS 8.4.1's AppleHDQGasGaugeControl that likely were used to demonstrate a jailbreak of the firmware.
When auditing iOS kernel executable, we found that the code quality of com.apple.driver.AppleHDQGasGaugeControl is very bad. In this blog, we will disclose 3 vulnerabilities in this kernel extension on the latest public iOS (version 8.4.1). More importantly, one of these bugs is a perfect heap overflow vulnerability that allows us to defeat all kernel mitigations and gain code execution in the kernel, just by exploiting this single vulnerability.
Unfortunately, the team has already confirmed that the vulnerabilities cannot be triggered inside the container sandbox and that the 2nd and the 3rd bugs are already fixed in iOS 9 beta 5.
For more updates on a potential jailbreak for iOS 9, please follow iClarified on Twitter, Facebook, or RSS.
![Apple Falls to Fifth Place in Chinese Smartphone Market as Sales Decline 25% [Canalys]](/images/news/93417/93417/93417-160.jpg "Apple Falls to Fifth Place in Chinese Smartphone Market as Sales Decline 25% [Canalys]")
![iPhone's Share of New Smartphone Activations Declines to 33% in the U.S. [Chart]](/images/news/93409/93409/93409-160.jpg "iPhone's Share of New Smartphone Activations Declines to 33% in the U.S. [Chart]")
![Apple Watch Series 9 Back On Sale for 25% Off! [Deal]](/images/news/93421/93421/93421-160.jpg "Apple Watch Series 9 Back On Sale for 25% Off! [Deal]")
![New M3 13-inch MacBook Air On Sale for $110 Off! [Lowest Price Ever]](/images/news/93420/93420/93420-160.jpg "New M3 13-inch MacBook Air On Sale for $110 Off! [Lowest Price Ever]")
![New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]](/images/news/93314/93314/93314-160.jpg "New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]")
![Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]](/images/news/93302/93302/93302-160.jpg "Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]")
