Apple has just released iOS 4.3.5 for the iPad and iPad 2. This version doesn’t bring new features, but does address the following:
Fixes a security vulnerability with certificate validation.
As always, if your on a jailbroken device, do NOT update as you’ll lose your jailbreak. Direct download links below:
iOS 4.3.5 Software Update
- Data Security
Available for: iOS 3.0 through 4.3.4 for iPhone 3GS and iPhone 4 (GSM), iOS 3.1 through 4.3.4 for iPod touch (3rd generation) and later, iOS 3.2 through 4.3.4 for iPad
Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS
Description: A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.
CVE-ID
CVE-2011-0228 : Gregor Kopf of Recurity Labs on behalf of BSI, and Paul Kehrer of Trustwave’s SpiderLabs
**Want the BEST new iPad protection? Order your invisibleSHIELD by ZAGG, the strongest protection for your new iPad backed by a 30 day money back guarantee, lifetime replacement warranty, and FREE shipping! Use coupon code 'iphoneinca' for 20% off your purchase! Order today!**
Posted under: iPad News