With iOS 12.4, Apple made an embarrassing error in the kernel that now allows a publicly available jailbreak. The error itself was actually removed with iOS 12.3 and crept back in with the latest update.
Security gaps in updates have been common lately, but they have not resulted in a jailbreak for a long time. So it has been a long time since there was last a publicly accessible jailbreak for the current iOS version. This makes the incident all the more worrying. The Uncover tool was updated to version 3.5.0 last night and is now able to crack iPhone and iPad devices with iOS 12.4. This allows the installation of alternative applications via Cydia. Scene fans know this from older iOS versions - but not from the latest one. But how could this happen? The reason for this surprising jailbreak lies in the kernel. There are various protective functions in the iOS system to prevent a jailbreak. One of these important mechanisms had to be repaired by Apple under iOS 12.3. The embarrassing thing is that the error from back then crept in again and enabled the group around "pwn20wndstuff" to crack the system under iOS 12.4.
Jailbreak exception for 2018 devices
Although the jailbreak is publicly available, not everyone who wants to use it will be able to use it so easily. As has now become known, devices with Apple's A12 chip are more difficult to crack. This means that owners of an iPad Pro 2018, iPhone XS, iPhone XS Max and iPhone XR could despair under certain circumstances. Some write that they needed several attempts - others even gave up on the attempt completely. According to initial information, the error is CVE-2019-8605. The vulnerability was discovered by a security researcher in the spring and reported to Apple. Since the security hole allows the execution of "malicious code" and can be used in combination with Apple's WebKit, a remote attack is also possible. Apple is expected to provide an update soon - so iOS 12.4.1 should reach us shortly. Apple AirPods with wireless charging case on special offer on Amazon
warning: Everyone needs to be aware of the risks of a jailbreak and laypeople should probably just avoid it. The consequences could be dire.
