iOS 12.0.1 fixes important bugs about AppleIDs and dangerous vulnerabilities

iOS 12.0.1 fixes important bugs about AppleIDs and other dangerous vulnerabilities that can lead to an icloud bypass or icloud ID details. It also patches two important kernel exploits which could make even more difficult a new jailbreak on iOS12. Apple is preparing a new release probably today iOS 120.1 with bug fixes and unspecified improvements for iPhone and iPad.iOS 12.0.1 firmware ipsw update.

iOS 12.0.1 fixes important bugs about AppleIDs and dangerous vulnerabilities

iOS 12.0.1 fixes important bugs about AppleIDs and dangerous vulnerabilities

ios 12.0.1 update

iOS 12 Released September 17, 2018

Accounts

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: A local app may be able to read a persistent account identifier

Description: This issue was addressed with improved entitlements.

CVE-2018-4322: Min (Spark) Zheng, Xiaolong Bai of Alibaba Inc.

Auto Unlock

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: A malicious application may be able to access local users AppleIDs

Description: A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement.

CVE-2018-4321: Min (Spark) Zheng, Xiaolong Bai of Alibaba Inc.

Entry added September 24, 2018

CoreMedia

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: An app may be able to learn information about the current camera view before being granted camera access

Description: A permissions issue existed. This issue was addressed with improved permission validation.

CVE-2018-4356: an anonymous researcher

 

Crash Reporter

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: An application may be able to read restricted memory

Description: A validation issue was addressed with improved input sanitization.

CVE-2018-4333: Brandon Azad

Entry added September 24, 2018

 

IOMobileFrameBuffer

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: An application may be able to read restricted memory

Description: A validation issue was addressed with improved input sanitization.

CVE-2018-4335: Brandon Azad

 

Kernel Exploit

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: An application may be able to read restricted memory

Description: An input validation issue existed in the kernel. This issue was addressed with improved input validation.

CVE-2018-4363: Ian Beer of Google Project Zero

 

Kernel

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Impact: An application may be able to execute arbitrary code with kernel privileges

Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4336: Brandon Azad

CVE-2018-4344: The UK’s National Cyber Security Centre (NCSC)

Entry added September 24, 2018

 

Full details apple security updates :

https://support.apple.com/en-us/HT209106

Download ios12 updates ipsw firmware

More:

DOWNLOAD FREE REIBOOT One-Click Enter/Exit Recovery Mode

reset restrictions passcode without restore

Remove icloud on activated iOS 11 – iOS 11.3 (backup method)