Samedi, 16 Juillet 2011 03:23
Apple Releases iOS 4.3.4 – Patches PDF Vulnerability
Apple recently seeded iOS 4.3.4 for its iOS devices including the iPhone 4, iPhone 3GS, iPad 2, iPad, and 3rd and 4th generation iPod Touch devices. Apple also release a comparable update for Verizon Wireless’ CDMA iPhone 4, iOS 4.2.9. These new builds include a security update that addresses the vulnerability with PDF files. This directly patches the extremely popular JailbreakMe.com jailbreak solution, which was by far the easiest way to jailbreak iOS devices. JailbreakMe will no longer function on devices running the newer firmwares, which are available now on iTunes. MuscleNerd tweeted the following warning after Apple deployed the new firmware: iOS 4.3.4 is out…please don’t update, or you’ll lose your jailbreak! And back up your 4.3.3 blobs soon! A support document, which outlines the security content of iOS 4.3.4 was released by Apple. The document mentions the following: iOS 4.3.4 Software Update CoreGraphicsAvailable for: iOS 3.0 through 4.3.3 for iPhone 3GS and iPhone 4 (GSM model), iOS 3.1 through 4.3.3 for iPod touch (3rd generation) and later, iOS 3.2 through 4.3.3 for iPadImpact: Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code executionDescription: A buffer overflow exists in FreeType’s handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.CVE-ID CVE-2010-3855 CoreGraphicsAvailable for: iOS 3.0 through 4.3.3 for iPhone 3GS and iPhone 4 (GSM model), iOS 3.1 through 4.3.3 for iPod touch (3rd generation) and later, iOS 3.2 through 4.3.3 for iPadImpact: Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code executionDescription: A signedness issue exists in FreeType’s handling of Type 1 fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.CVE-ID CVE-2011-0226 IOMobileFrameBufferAvailable for: iOS 3.0 through 4.3.3 for iPhone 3GS and iPhone 4 (GSM model), iOS 3.1 through 4.3.3 for iPod touch (3rd generation) and later, iOS 3.2 through 4.3.3 for iPadImpact: Malicious code running as the user may gain system privilegesDescription: An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.CVE-ID CVE-2011-0227 Authors:
Read 3389 times
Published in
News Technologique-Tech News
Last WebBuzz
-
WebBuzz du 24/11/2017: Pérou décoller comme superman-Peru Reverse bungee aka Superman Jump
Read 37717 times
-
WebBuzz du 22/11/2017: Une Femme Saoudienne fait du surf dans les rues-Saudi girl Car Surfing after heavy rains and flood in Saudi Arabia
Read 38063 times
-
WebBuzz du 20/11/2017: Maxi crach au grand prix GT à Macau-Huge pile up Crash 2017 Macau Grand Prix FIA GT World Cup
Read 32956 times
-
WebBuzz du 17/11/2017: Boston Dynamics fait le cirque avec ses robots-BD prepare to build a circus with his robots
Read 35705 times
-
WebBuzz du 16/11/2017: Une illusion d'optique féminine-a feminine optical illusion
Read 33801 times
-
WebBuzz du 14/11/2017: Roumanie un bus de police évite un tram de justesse-Close call between a tram and police's bus
Read 30398 times
-
WebBuzz du 13/11/2017: Arrivée fracassante d'un bateau sur les docks de San Diego-Whale Watching Boat Crashing Into San Diego Dock
Read 28662 times
-
WebBuzz du 08/11/2017: Créer des flammes de toutes les couleurs-How to make colourful flames
Read 29537 times
-
WebBuzz du 07/11/2017: Echec test du système de détection des piètons de la Volvo S60-Volvo S60 Pedestrian Detection System Test failed
Read 30767 times
-
WebBuzz du 03/11/2017: Slacker dans la forêt-slackline in the forest
Read 33226 times
Accusé de reception
bancaires
bilan
cheval
configuration
Confirmation de lecture
copie
copies
Dolibarr
duplicata
EDF
Excel
exim
facture
factures
Firefox
Google cloud print
hameçonnage
IE6
IE7
impression
informatique
itunes
java
linux
luxembourgeois
mac os
MAJ
micosoft
microsoft
Office
Outlook
phishing
quicktime
rappels
relances
seamonkey
serveurs
spécifique
Sécurité
Tentative
thunderbird
troie
utilisant
V322
Vista
Windows
Windows 7
XP/2000 : Activer le pavé numérique
établissements