The security researcher who has been credited for 8 exploits which were fixed in iOS 10.3.2 released already, has taken to his own Twitter feed to speak out about a iOS 10.3.1 kernel exploit that’s soon-to-be-released into the public domain. Adam Donenfeld plans to release the exploits at a security conference in August.
As the developer of Zimperium has promised that a 0day iOS exploit will be released at an upcoming security meeting, with Todesco taking to Twitter to inform that one, or even multiple, exploits are not enough to create a functional jailbreak.
Italian developer Luca – famed for his work in the jailbreak community, and recently his Yalu jailbreak releases, has highlighted that the iOS 10.3.1 kernel exploit alone may not be enough to develop a fully-loaded jailbreak, but rather goes on to point out that it may be possible to download iOS 10.2, that too, if you have saved iOS 10.2 blobs, which indirectly means that you will be able to jailbreak your iPhone, iPad, or iPod touch as iOS 10.2 can be jailbroken using Yalu jailbreak.
Reportedly, he and his team have kernel privilege escalation bugs that were sent across to them, and likely that those bugs have been fixed in the latest versions of iOS, but were available to exploit in previous versions on which a lot of iOS device owners are sitting. Recently, Donenfield and his team have also promised to release of of these exploits at the upcoming conference, leaving many of jailbreak community to speculate that could see the light of a jailbreak for iOS 10.3.1 being made available.
His tweets initially says of the much awaited iOS 10.3.1 jailbreak, but was quick to clarify that he doesn’t actually is planning to release a jailbreak, rather would be happy to help someone who is interested in developing a jailbreak.
Clarified by the team to inform that it is actually an exploit which will be presented and released rather than an actual jailbreak solution built on top of those exploits, that wouldn’t stop anyone from releasing a public jailbreak for iOS 10.3.1 using those and additional exploits.
Todesco’s take on the situation is that one lone exploit is not enough to create a jailbreak, but nevertheless, it will be used for downgrading to iOS 10.2 which will then allow users to jailbreak on iOS 10.2 firmware using yalu102 jailbreak:
A kernel exploit alone is not enough to do a jailbreak; however for those with 10.2 blobs saved it will be possible to downgrade.
The availability of kernel privilege escalation will mean that developers can offer kernel code execution, furthermore offer the ability to downgrade to iOS 10.2. Where it won’t allow is a fully functional jailbreak without all of the other required components being put in place by those who has the technical expertise to be able to do so. However, it is a good idea to save iOS 10.3.1 SHSH blobs as Apple is still signing iOS 10.3.1 if you haven’t done so already.
(Source: qwertyoruiop [Twitter])
Time to check out:
- iOS 10.3.1 Jailbreak Promised, But It Might Take A While
- Jailbreak Developer Hacks NFC On iPhone / Unlocked to use with other NFC-based Devices [Video]
- Jailbreak iOS 10.3.2 / 10.3.1 / 10.3 / 10.2.1 For iPhone And iPad [Latest Status Update]