Slashdot Mirror

← Back to Stories (view on slashdot.org)

iPad Left Vulnerable After Record iPhone Patch Job

Posted by kdawson on from the only-three-million-who-would-bother dept.

CWmike writes "With Monday's iOS 4 upgrade, Apple patched a record 65 vulnerabilities in the iPhone, more than half of them critical. However, the first-generation iPhone and iPod Touch, as well as the much newer iPad, may have been left vulnerable to some or all of the 65 bugs. iOS 4 cannot be installed on 2007's iPhone and iPod Touch, and the upgrade is not slated to reach iPad owners until this fall. The bug count is a record for the iPhone, surpassing the previous high mark of 46 vulnerabilities patched last summer with iPhone OS 3.0. Formerly known as iPhone OS 4, iOS 4 included 35 bugs, or 54% of the total, that were tagged with the phrase 'arbitrary code execution.' It's unclear how many, if any, of the vulnerabilities affect Apple's iPad. The media tablet runs an interim version of the operating system, dubbed iPhone 3.2, that followed the February iPhone 3.1.3 security update. It's possible that some of the bugs patched Monday were fixed by Apple before it launched the iPad in early April. But according to the Common Vulnerabilities & Exposures database, it's likely that many of the flaws fixed on Monday still exist in 3.2."

4 of 145 comments (clear)

  1. iOS 3 the IE6 of phones? by syntaxeater · · Score: 1, Troll

    Obviously jumping to conclusions, but the irony would be overwhelming.

  2. Re:They're no bugs in Apple products! by DJRumpy · · Score: 0, Troll

    Perhaps because Apple is patching these before they are exploited in the wild, rather than after? TIf the phone OS follows the same pattern as the desktop updates, they will continue to support the 3.x branch for quite a few years with security patches just as Apple continues to support Leopard as well as Snow Leopard. There is absolutely nothing preventing Apple from pushing the same patches to the 3.x line. It's also not a sure thing that these patched vulnerabilities that have been patched in 4.0 exist in 3.0. No where in the article does it claim as much. It simply hints that they might exist in both (and I agree it's likely that some do).

  3. Re:Schaudenfreude Reigns! by jo_ham · · Score: 0, Troll

    What truth? That software has bugs?

    I have known that truth for a long time - OS X is patched quite frequently, and the knowledgebase articles about just what has been patched and who discovered it are quite informative. Since iOS is based on OS X it does not surprise me that it also has bugs. Nice to see them fixed.

    A lot of these were bugs in Webkit, so expect updates for Android too, assuming your phone manufacturer offers an update. How many of them have got around to offering 2.2?

  4. Re:Funny by intheshelter · · Score: 0, Troll

    While Apple haters like to trot out this security through obscurity crap, it's well known to anyone with an ounce of brains that it has been debunked many times over. Apple products aren't perfect, but in 10 YEARS OS X has not had a single virus. Previous version of the Mac OS had a lower percentage of the market and they actually had a few viruses. OS X is not perfect, but it's record is very clear so far on this.

    As for the Apple preferring the silent failure option, it seems that you are making shit up. Very clever, saying that since you don't see any failure message Apple must be hiding it. A huge lie of course, but a nice attempt for the other sheep and haters to latch on to.

    In the end you're just full of shit and making crap up to justify your dislike of Apple. I bid you a very warm welcome to the world where people see through your BS and call you out on it every time.