Apple today released a new version of the iPhone and iPod touch software. The new version is 3.1.3. You can tether your device to iTunes and get the update. The update included some minor bug fixes and enhancements but was mainly for the security flaws. The 5 security holes that were fixed in this release are
From Apple’s Website
iPhone OS 3.1.3 and iPhone OS 3.1.3 for iPod touch
CoreAudio
CVE-ID: CVE-2010-0036
Available for: iPhone OS 1.0 through 3.1.2, iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Playing a maliciously crafted mp4 audio file may lead to an unexpected application termination or arbitrary code execution
Description: A buffer overflow exists in the handling of mp4 audio files. Playing a maliciously crafted mp4 audio file may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. Credit to Tobias Klein of trapkit.de for reporting this issue.
ImageIO
CVE-ID: CVE-2009-2285
Available for: iPhone OS 1.0 through 3.1.2, iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution
Description: A buffer underflow exists in ImageIO's handling of TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking.
Recovery Mode
CVE-ID: CVE-2010-0038
Available for: iPhone OS 1.0 through 3.1.2, iPhone OS for iPod touch 1.1 through 3.1.2
Impact: A person with physical access to a locked device may be able to access the user's data
Description: A memory corruption issue exists in the handling of a certain USB control message. A person with physical access to the device could use this to bypass the passcode and access the user's data. This issue is addressed through improved handling of the USB control message.
WebKit
CVE-ID: CVE-2009-3384
Available for: iPhone OS 1.0 through 3.1.2, iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Accessing a maliciously crafted FTP server could result in an unexpected application termination, information disclosure, or arbitrary code execution
Description: Multiple input validation issues exist in WebKit's handling of FTP directory listings. Accessing a maliciously crafted FTP server may lead to information disclosure, unexpected application termination, or execution of arbitrary code. This update addresses the issues through improved parsing of FTP directory listings. Credit to Michal Zalewski of Google Inc. for reporting these issues.
WebKit
CVE-ID: CVE-2009-2841
Available for: iPhone OS 1.0 through 3.1.2, iPhone OS for iPod touch 1.1 through 3.1.2
Impact: Mail may load remote audio and video content when remote image loading is disabled
Description: When WebKit encounters an HTML 5 Media Element pointing to an external resource, it does not issue a resource load callback to determine if the resource should be loaded. This may result in undesired requests to remote servers. As an example, the sender of an HTML-formatted email message could use this to determine that the message was read. This issue is addressed by generating resource load callbacks when WebKit encounters an HTML 5 Media Element.
Now, I wonder if they will start writing articles how unsafe HTML 5 is and to stop using it? Probably not and nor should they. This should go to show that anything can be hacked and used for a virus. So the next time you read about Microsoft and a virus, don’t be so quick to throw stones. Unless you're like me right now and gloating a little.
{ 3 comments… read them below or add one }
In a related annoumcement Google Apps is phasing out support for older browsers in hopes to capture some of the capabilities in the HTML5 standard (I wonder if buffer overflows is a feature?)
—Notice from Google Apps —–
Dear Google Apps admin,
In order to continue to improve our products and deliver more sophisticated features and performance, we are harnessing some of the latest improvements in web browser technology. This includes faster JavaScript processing and new standards like HTML5. As a result, over the course of 2010, we will be phasing out support for Microsoft Internet Explorer 6.0 as well as other older browsers that are not supported by their own manufacturers.
We plan to begin phasing out support of these older browsers on the Google Docs suite and the Google Sites editor on March 1, 2010. After that point, certain functionality within these applications may have higher latency and may not work correctly in these older browsers. Later in 2010, we will start to phase out support for these browsers for Google Mail and Google Calendar.
Google Apps will continue to support Internet Explorer 7.0 and above, Firefox 3.0 and above, Google Chrome 4.0 and above, and Safari 3.0 and above.
Starting this week, users on these older browsers will see a message in Google Docs and the Google Sites editor explaining this change and asking them to upgrade their browser. We will also alert you again closer to March 1 to remind you of this change.
In 2009, the Google Apps team delivered more than 100 improvements to enhance your product experience. We are aiming to beat that in 2010 and continue to deliver the best and most innovative collaboration products for businesses.
Thank you for your continued support!
Sincerely,
The Google Apps team
Email preferences: You have received this mandatory email service announcement to update you about important changes to your Google Apps product or account.
Google Inc.
1600 Amphitheatre Parkway
Thanks for the info. I will update…
Also once its jailbroken you can only add jailbroken or copy protection free media or apps as its altered the boot code and NOT recognised as a valid ipod on iTunes so wont load (from itunes on the computer) NEW apps and NEW protected items (apps, video or DRM music). YOU CAN load itunes Plus music and stuff you import from CD or MP3 or AAC files etc… or try and use apps store or itunes on the device itself!!