Pangu Core Member recommends updating to iOS 9.2.1, for security concern

One of the core team members of the Pangu Jailbreak Team, a.k.a. windknown, has just posted a technical article explaining the security and vulnerability fixes in iOS 9.2 and iOS 9.2.1.

There are tons of technical details discussing on specific kernel exploits and race condition bug in iOS 9.2 that can be used to jailbreak the operating system, that you may wish to check out if interested. Worth mentioning is that at the end of the article, a specific note was made by the hacker, that:

“值得注意的是这个漏洞可以在iOS的沙盒内触发,因此在APP内就可以直接攻击内核,获取内核代码执行权限。建议用户尽快升级到最新版本,并且避免安装来历不明的APP。”

A rough translation: it is noteworthy that this vulnerability can be triggered in the iOS sandbox, so it can attack the kernel right from the app to obtain the kernel code execution permission. We recommend that users upgrade to the latest version as soon as possible, and avoid installing apps from unknown sources.

This invites speculations whether or not this is a hint to users should update their devices . But meanwhile, iOS hacker Luca Todesco (a.k.a @qwertyoruip) also tweeted to respond to windknown that iOS 9.2 and below are vulnerable to major kernel bug that leads to security loopholes to the device. His suggestion is:

It appears to be clear that if you still want to jailbreak, stay with iOS 9.2 is a better choice. But if care about iOS security, update to the latest iOS 9.2.1. But what’s your take to the statement from windknown and Luca? Let me know in the comments.

Source: Pangu Blog

Advertisements

10 Comments Add yours

  1. Anonymous says:

    makes sense

    Like

  2. naastyguru says:

    “Update to 9.2.1 if you don’t care about jailbreak. Stick on 9.2 if you do.” F U for leaving that decision onto me !

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s