With iOS 12.4, Apple made an embarrassing error in the kernel that now allows a publicly available jailbreak. The error itself was actually removed with iOS 12.3 and crept back in with the latest update.
Security vulnerabilities in updates have become quite common these days, but they haven't resulted in jailbreaks for a long time. It's been a long time since there was last a publicly available jailbreak for the current iOS version. This makes this incident all the more worrying. The Uncover tool was updated to version 3.5.0 last night and is now capable of cracking iPhone and iPad devices running iOS 12.4. This allows the installation of alternative applications via Cydia. Fans of the scene are familiar with this from older iOS versions – but not from the latest one. But how could this happen? The reason for this surprising jailbreak lies in the kernel. To prevent jailbreaks, there are various protective functions in the iOS system. One of these important mechanisms already had to be fixed by Apple in iOS 12.3. The embarrassing thing is that the same bug from back then crept in again, allowing the group around "pwn20wndstuff" to crack the system under iOS 12.4.
Jailbreak exception for 2018 devices
Although the jailbreak is publicly available, not everyone who intends to use it will be able to use it so easily. As has now become known, devices with Apple's A12 chip are more difficult to crack. This means that owners of a 2018 iPad Pro, iPhone XS, iPhone XS Max, and iPhone XR could despair under certain circumstances. Some write that it took them several attempts – others even gave up on the attempt completely. According to initial information, the error is CVE-2019-8605. The vulnerability was discovered by a security researcher in the spring and reported to Apple. Since the vulnerability allows the execution of "malicious code" and can be used in combination with Apple's WebKit, a remote attack is also possible. Apple is expected to release an update soon – so iOS 12.4.1 should be available soon. Apple AirPods with wireless charging case on special offer on Amazon
warning: Everyone needs to be aware of the risks of a jailbreak and laypeople should probably just avoid it. The consequences could be dire.
