The iPhone Dev Team has successfully jailbroken the new iPad, but there has been no indication of the release of a jailbreak tool at the moment. MuscleNerd tweeted photos of the Jailbreak along with the disclaimer “Just a first step, still lots of work to do! No ETA!”
It appears that there are several potential paths to a jailbreak:
- We can confirm that the method used to jailbreak the iPad2 4 months ago still works even in 5.1. That means we’ll at least be able to get our foot in the door to get the required kernel dumps on the iPad3. That’s an important step, but by no means is it the end of the story.
- Those of you following @i0n1c may have noticed he’s already tweeted pictures of his iPad2 jailbroken at 5.1. As far as we know, he’s using a method completely unrelated to the one mentioned above. That would be great news!
- We’ve also seen bits and pieces of an entirely different jailbreak method being investigated by someone close to the Cydia repo scene.
- That’s three different angles, and we’re not even including the continuous work @pod2g makes towards a new jailbreak!
The infamous Germany based iOS hacker involved in the jailbreak scene Stefan Esser, more commonly known as i0n1c who was previously responsible for research and work which ended in a jailbreak for iOS 4 which spanned three software updates and was heavily involved behind the scenes in the production of the Absinthe based jailbreak. I0n1c has once again been showing off his jailbreak ninja skills, first of all by being the first to showcase a jailbreak for the iPad 2 running iOS 5.1 and now the show has shifted towards the iPhone Dev Team’s front man MuscleNerd, who has successfully jailbroken the new iPad in its full glory running iOS 5.1. He posted screenshot on Twitter showing off the new iPad running the latest build of Cydia, which is 1.1.5:
While folks out there were still trying to score themselves the new iPad, MuscleNerd used his skills to bypass Apple’s restrictions and get our beloved Cydia working.
In the meantime, for those of you who own A4 devices (iPhone 4, iPad 1, iPod touches) can jailbreak the latest iOS 5.1 (tethered), and iOS 5.0.1 (untethered) using Redsn0w, Sn0wbreeze. For those with A5 devices (iPhone 4S and iPad 2) on iOS 5.0.1 can use Absinthe on Windows or Mac.
Update # 1: Stefen Esser posted a video showing untethered jailbreak for the new iPad -
Apple released iOS 5.1 alongside the new iPad 3 and new Apple TV. The update brings a variety of new features and bug fixes to iOS including the ability to delete images from Photo Stream, camera shortcut visible by default on lock screen, improved camera face detection, Japanese language support for Siri, genius mixes for iTunes Match, updated AT&T network indicator, improved battery life, and more.
You can get the iOS 5.1 software update directly on your iPhone, iPad, or iPod touch by using OTA Update, or you can update through iTunes or by downloading the IPSW and performing a manual upgrade.
Download iOS 5.1
iOS 5.1 (build 9B176) is compatible with iPad 1, iPad 2, iPhone 3GS, iPhone 4, iPhone 4S, iPod touch 3rd & 4th gen, and iPad 3. Additional builds are available for Apple TV 2 and Apple TV 3.
- iPad 1
- iPad 2 Wi-Fi
- iPad 2 GSM (AT&T)
- iPad 2 CDMA (Verizon)
- iPad 2,4
- iPhone 3GS
- iPhone 4 GSM (AT&T)
- iPhone 4 CDMA (Verizon)
- iPhone 4S
- iPod touch 3G
- iPod touch 4G
- iPad 3 Wi-Fi
- iPad 3 GSM
- iPad 3 CDMA
- Apple TV 2 (9B179b1)
- Apple TV 3 (9B179b1)
Apple seeded OS X 10.8 Mountain Lion for the developers today, the public release of the new OS is scheduled for this summer. The new version does not have as many massive changes under it’s hood like we saw in OS X 10.7 Lion. But that’s not to say OS X 10.8 isn’t a big deal.
Average users who already own other Apple products like iPhone, and iPad will appreciate the improvements Apple has introduced with OS X 10.8, Mountain Lion to bring OS X more closely in line with iOS.
The Chronic Dev Team recently sought out help in identifying iOS 5 vulnerabilities with their C-Dev Reporter tool. The news disappointed many people which had been waiting for the release of a jailbreak for their iPhone 4S. MuscleNerd of the dependable iPhone Dev Team did recently tweet some good news for iPhone 4S users though. He said the following:
Crazy Thanksgiving weekend! Very promising 4S unlock (http://twitpic.com/7kku4t) is in the works (Not i4, just 4S..that’s crazy part)
What this means that they have discovered an exploit in the A5 processor that powers the iPhone 4S and iPad 2, allowing them to unlock an iPhon 4S so that they can use it with any other GSM carrier. MuscleNerd even ported the following image to confirm the unlock for the iPhone 4S:
The other thing to think about is the fact that you need to jailbreak the iPhone to be able to unlock it, so this means that the iPhone Dev Team must be gearing up for the launch of a jailbreak as well. Let’s hope that the jailbreak is untethered and possibly available for the iPhoen 4, iPhone 3GS, alongside with the iPhone 4S where the unlock will be exclusive.
The iPhone Dev Team has NOT provided an ETA for when it will be releasing the jailbreak and unlock, but we’ll keep you posted regarding any released information as usual!
The Chronic Dev Team has recently published a blog post titled “Weapons of Mass Exploitation” where they provide an update on the untethered jailbreak for iOS 5. It was more of a call to action, asking the jailbreak community to help send in device crash reports via a tool they released called the C-Dev Reporter. The crash reports would help the Chronic Dev Team discover a vulnerability in iOS, which they could use to help release a jailbreak.
In the past, the Chronic Dev Team released GreenPois0n, which was a popular jailbreak tool for iOS 4.2.1. A few months back, they announced that they had discovered 5 new vulnerabilities in the iOS 5 beta and recently a bug in iOS 5 that could possibly help in developing an untethered jailbreak on iOS 5.
The Chronic Dev team has given the following update on the untethered jailbreak for iOS 5:
During my JailbreakCon talk in September, I was excited to announce that the Chronic Dev team had already discovered 5 different exploits for use in our upcoming jailbreak. Unfortunately, that announcement was a bit premature, because in the subsequent weeks, Apple found & patched a (critical) few of those exploits, between the beta versions we used for testing and the final release of iOS5 on October 12.
Sadly (and trust us, we are much more sad about this than any of you could possibly be), this has prevented us from being able to release a new jailbreak as quickly as we wanted to. As I hinted at earlier this week on Twitter, I was initially disheartened to think that so many of the countless hours we’ve worked on this jailbreak seemingly went right down the drain.
Not to mention, these are by no means the first exploits that have been “lost” by Chronic Dev (or any other iOS hacking teams) in this manner. In fact, these are just a few in a long-running series of exploits that were patched by Apple before we hackers could make use of them in a free jailbreak for you, our loyal fans.
They then went on to explain the method Apple uses to find vulnerabilities:
One of the primary challenges in working with userland exploits is that, every time any program crashes on your iPhone, a “crash report” is generated and instantly sent back to Apple. As you can imagine, while we’re working out all the kinks in the exploitation of a vulnerability, we may need to crash any particular program thousands & thousands of times.
It’s possible to change your iTunes settings to stop sending this diagnostic information back to Apple, and of course everyone in Chronic Dev has made this change on all our development machines. However, even this is not always 100% effective at preventing Apple from obtaining our data. For instance, if one of us is at a friend’s house and plugs our iPhone up to his or her computer (even just to charge it), it’s very likely that computer is set up to send all our valuable data & crash reports right back to Apple.
Chronic Dev team have released a new tool called C-Dev Reporter, which uses a similar method to help find the vulnerabilities:
All this program requires from you is to attach your iOS device to your computer and click a single button!
At this point, the program copies all the crash reports off your device (which, under normal circumstances, would be sent right back to Apple), and instead sends this data to a secure, private server hosted by your friendly Chronic Dev team. Next, our program proceeds to neuter your copy of iTunes, simply by changing your settings to prevent your computer from sending any further diagnostic information from your device to Apple.
Using this agglomeration of your crash reports and our ninja skills, Chronic Dev will be able to quickly pinpoint vulnerabilities in various programs by using the same techniques Apple currently employs. At the very least, your data will help point us in the direction of which applications are the most vulnerable, so we can focus our time & energy on these with laser-like intensity. And, of course, this will also prevent Apple from accessing all your valuable data, just so they can then turn around and use it against you.
You can download C-Dev Reporter using this link. As mentioned before, the idea of the new tool is to help in identifying new vulnerabilities and in turn result in a jailbreak for future iOS software updates, but it appears to be a long term solution. The news should come as a disappointment to iOS device users who have been eagerly waiting for an untethered jailbreak and in case of iPhone 4S and iPad 2 users a jailbreak for iOS 5.
As of now, it looks like Dev team who have jailbroken iPhone 4S are the only hope when it comes to releasing to jailbreak for iPhone 4S and iPad 2.
Source: Chronic Dev Team (blog)
Even for those of you who aren’t jailbreakers, TinyUmbrella is a great little app that allows you to save your iPhone, iPod touch or iPads SHSH blob files locally. Some of you may be wondering what SHSH blobs are and what the purpose of saving them might be. It is quite simple, if you have your blob files stored locally, you can downgrade your iDevice to an earlier version of iOS; useful if your iPhone gets hit with a bug in the latest version of iOS, or an app you can’t live without stops working.
If you are running iOS 5.0.1, you might want to head on by TinyUmbrella’s official website and grab the latest version: it’s been updated to save the latest version’s SHSH blob files. @notcom (the developer of Tiny Umbrella) did mention one caveat though: Even though you can store an iPhone 4S’s blob files locally with the new version of Tiny Umbrella, there’s no known way to restore them – so don’t expect to be downgrading your iPhone 4S anytime soon.
Even though there is still no working solution for restoring 5.x on iPhone 4S I have released a 5.01.00 so you can at least save 5.0.1 SHSH. I have added tentative support for at least saving 5.0.1 SHSHs for iPhone 4S but as of now we are unable to use them fully. As soon as more information is available I will update.
Still, we recommend saving them as they might come in handy in the future and they only take a few seconds to save!
For those of you who are not on an iPhone 4S and managed to save your iOS 5.0 SHSH blob, you can downgrade from iOS 5.0.1 to iOS 5.0. To do so, follow the steps here.
Download Tiny Umbrella v5.01.00
iOS 5.0.1 was Apple’s answer to the battery problems plaguing iOS 5. Although, it has been reported that iOS 5.0.1 doesn’t seem to be fixing the problem at all. iOS 5.0.1 also plugs up some important jailbreak exploits that hackers are working on using to develop the untethered jailbreak for iOS 5. Since it plugs up those exploits, Pod2g recommended not upgrading so that you can remain on the firmware that will support the untethered jailbreak when it comes out. If, however, you’re too late and you’ve installed iOS 5.0.1 and are having trouble downgrading, you can still have a tethered jailbreak for your device. iH8sn0w tweeted just a few minutes ago that sn0wbreeze has been updated to jailbreak iOS 5.0.1.
This jailbreak tool only supports Windows and is not for Mac. Mac users can use redsn0w to jailbreak their iOS 5.0.1 device; Windows users can choose between this tool or redsn0w. Like I mentioned in the last news article that I wrote about sn0wbreeze, I feel that sn0wbreeze is an easier tool to use because of the pictures and better directions which take you step by step. This is a great way for new jailbreakers to understand how jailbreaking works. It seems more simple than redsn0w. While redsn0w has less steps involved, it doesn’t really explain anything, you generally need to read a guide to learn how to use it, or have previous experience. Yet with sn0wbreeze you can be totally new to jailbreaking and understand what it’s telling you to do because of the visuals.
Whats New in Version 2.8b11?
- Supports iOS 5.0 (9A334)/5.0.1 (9A405)
- Fixed iBooks sandbox crashing issues (as of 2.8b9).
- Fixed location services issues with iPhone 3GS users running the iPad baseband (as of 2.8b9).
- Re-added iPad baseband install option to iPhone 3GS.
- Tethered devices are booted via iBooty which is extracted to the Desktop after running sn0wbreeze.
Download Sn0wbreeze 2.8 b11
Old bootrom iPhone 3GS’s can still have the untethered jailbreak. Anything newer is still tethered. The whole pastie by iH8sn0w can be read below:
sn0wbreeze v2.8 [BETA 11]:
* Supports iOS 5.0 (9A334)/5.0.1 (9A405)
* Fixed iBooks sandbox crashing issues (as of 2.8b9).
* Fixed location services issues with iPhone 3GS
users running the iPad baseband (as of 2.8b9).
* Re-added iPad baseband install option to iPhone 3GS.
* Tethered devices are booted via iBooty which is
extracted to the Desktop after running sn0wbreeze.
- iPhone 3GS (old bootrom)…NO
- iPhone 3GS (new bootrom)..YES
- iPhone 4 (GSM)…………YES
- iPhone 4 (CDMA)………..YES
- iPod Touch 3G………….YES
- iPod Touch 4…………..YES
- iPad 1G……………….YES
** iPhone 3GS iPad baseband (06.15.00) users: **
- Re-flash the iPad baseband via sn0wbreeze
if you restore(d) to a stock 5.0 firmware.
Now available at: http://iH8sn0w.com
Stay tuned for more info!