Apple Patched iOS 8.1.1 Pangu Jailbreak Security Flaws

The Apple company has launched the new iOS 8.1.1 update to public with performance improvements and bug fixes. To improve system stability this release also came with some security fixes that include patching exploits. These means Pangu team used for its iOS 8-8.1 Jailbreak.

Regretfully, the Pangu team confirmed iOS 8.1.1 update blocks the Pangu jailbreak. Apple company pointed this statement as well.

Three security patches are listed in iOS 8.1.1 update, and are related to unsigned code execution. Also the list includes credits @PanguTeam for discovering security patches.

The exploits are: the kernel, dyld, and sandbox profiles.

There is another security fix in the iOS 8.1.1 update. It is a privacy loophole. It allows an unauthorized user from the lock screen view and send photos.

Look through the details about the vulnerabilities:

dyld
Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
Impact: A local user may be able to execute unsigned code
Description: A state management issue existed in the handling of Mach-O executable files with overlapping segments. This issue was addressed through improved validation of segment sizes.

CVE-ID
CVE-2014-4455 : @PanguTeam
Kernel
Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
Impact: A malicious application may be able to execute arbitrary code with system privileges
Description: A validation issue existed in the handling of certain metadata fields of IOSharedDataQueue objects. This issue was addressed through relocation of the metadata.

CVE-ID
CVE-2014-4461 : @PanguTeam
Sandbox Profiles
Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
Impact: A malicious application may be able to launch arbitrary binaries on a trusted device
Description: A permissions issue existed with the debugging functionality for iOS that allowed the spawning of applications on trusted devices that were not being debugged. This was addressed by changes to debugserver’s sandbox.

CVE-ID
CVE-2014-4457 : @PanguTeam

All of us have to wait so time for Pangu’s Team iOS 8.1.1 jailbreak after they explored all exploits. Please note that owners of jailbreaken devices should not to do iOS 8.1.1 upgrade and be very attentive installing jailbreak tweaks.