Less than two weeks after Apple released iOS 13.5, the company is rolling out the first major update, iOS 13.5.1 and iPadOS 13.5.1. The update patches the vulnerability that enabled the high-profile jailbreak discovered by the Unc0ver team just days after the new OS arrived. “This update provides important security updates and is recommended for all users,” Apple wrote in its release notes.
The exploit, shared last week, works with every iPhone that runs iOS 11 or newer, including iOS 13.5. The jailbreak’s lead developer Pwn20wnd told Wired that the jailbreak “adds exceptions to the existing [security] rules.” While some users like the freedom that jailbreaking devices gives them, the practice opens those devices to new risks, and the flaw could have been used for malicious purposes.
It’s not a good look for an OS to have a zero-day vulnerability just days after its release. Apple did work quickly to release a patch, and that swift action may deter other jailbreaking attempts, like the one we saw last fall. But as we noted previously, the jailbreak raises questions about the resurgence of iOS security issues, including a Mail app vulnerability and the iOS 14 leak. Those concerns remain even with the iOS 13.5.1 update.
In addition to iOS 13.5.1 and iPadOS 13.5.1, Apple is releasing watchOS 6.2.6 and updates for HomePod and Apple TV, 9to5Mac reports. Those updates should be available soon.