iOS 4.3.5 Released to Close Another Security Hole: Redsn0w Safe!

In case you didn’t get the memo on Monday, Apple released iOS 4.3.5 a few weeks after releasing 4.3.4 that fixed a PDF exploit being used by hackers for good and evil!

Apple’s description of the new update is kind of vague. Basically, it just fixes a flaw that doesn’t check the validity chain of certificates. This security vulnerability could allow people access to your device while you’re surfing the web.

“A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.”

The redsn0w 0.9.8 jailbreak tool in unaffected by the update, but obviously, JailbreakMe 3.0 users will want to skip it. Anyone else can connect their onclick="javascript:pageTracker._trackPageview('/outgoing/www.ipadngravy.com');" target="_blank" title="iPad" href="http://www.ipadngravy.com">iPad, iPod touch (3rd and 4th generation), and/or iPhone to a computer to receive the update.The Verizon update is labeled 4.2.10.