Jailbreak is once again a possibility, and lately, we were assaulted by news about new jailbreak tools. It appears that developers have even managed to “defeat” the infamous iOS 11, but this does not mean that the latest versions have a jailbreak tool yet.
Therefore, the jailbreaking community currently focuses on recent iOS 11 versions. It appears that Zimperium zLabs Team might be the first ones that will discover iOS 11.2.2 vulnerabilities. The key for that is the “bluetoothd” daemon that affect this version and the previous ones.
Two major vulnerabilities
These vulnerabilities were found in this daemon, and Apple has already fixed them in iOS 11.2.5. Nevertheless, users who did not update their iOS version might still have a chance to get jailbreak. The two vulnerabilities have already been acknowledged before:
“The first vulnerability is memory corruption in bluetoothd and the other is execution of arbitrary code on different crucial daemons. The first vulnerability (CVE-2018-4095) is full relative (ASLR bypass) control on the stack in CoreBluetooth that leads to memory corruption over bluetoothd.
The second major vulnerability (CVE-2018-4087) leads to execution of arbitrary code on different crucial daemons in iOS by hijacking the session between each daemon and bluetoothd. Some of the impacted daemons are: SpringBoard, mDNSResponder, aggregated, wifid, Preferences, CommCenter, iaptransportd, findmydeviced, routined, UserEventAgent, carkitd, mediaserverd, bluetoothd, coreduetd and so on.”
If these vulnerabilities are exploited properly, this could mean that we will see a new jailbreak very soon. The way things are evolving right now, it is very likely that jailbreaking will become popular once again, and there might be a new age of glory for it. Nevertheless, while iOS 11 might have been cracked, this does not mean that we have numerous tweaks available for it, so there is still work to do.