Apple patches security issues in new iOS 4.3.5 update, still jailbreakable
07/25/2011 04:44 PM Filed in: Apple
Apple has released a new iOS security update, version 4.3.5 The update covers the iPhone 4, iPhone 3GS, iPad 1, 2, iPod Touch 3rd Gen. and 2nd Gen. A separate iOS 4.2.10 (Build 8E600) is available for the CDMA Verizon iPhone.
There are no new features included in the new patch. The new patch only address a "certificate validation," security issue. Apple posted a support document explaining what the update patches, view below.
“impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS”
“Description: A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.”
You can still Jailbreak iOS 4.3.5 using redSnow but only in a tether state. So if you want to still be able to turn your Apple device on and off without having to connect it to a computer every time, its suggested not to update.
Source: Apple (4.3.5), (4.2.10), Mac Rumors
You may also like:
Apple has released OS Lion to the public
Apple releases latest iOS 5 beta 3 to Developers still jailbreakable (Video)