Checkm8 Exploit Opens Door to Unpatchable Jailbreak on iPhone 4S Through iPhone X
A security researcher who goes by "axi0mX" on Twitter today released "checkm8," which he claims is a bootrom exploit for iOS devices equipped with A5 through A11 chips, including the iPhone 4S through iPhone X, several iPad models dating back to the iPad 2, and the fifth-generation iPod touch and later.
This would be the first publicly released bootrom exploit since the iPhone 4 in 2010 and pave the way for a permanent, non-patchable jailbreak on hundreds of millions of affected iOS devices. Since the bootrom is read-only, Apple cannot patch this type of exploit with a software update.
The bootrom exploit has many other possibilities on affected devices, including downgrading iOS versions without SHSH blobs or APTickets, dual booting iOS, and running custom firmwares, according to jailbreak enthusiasts.
This is significant news in the jailbreaking community, as the last bootrom exploit known as "limera1n" was released by George "geohot" Hotz nearly a decade ago for devices with A4 chips and earlier, including the iPhone 4, iPhone 3GS, the third- and fourth-generation iPod touch, and the original iPad.
- Alibaba Pandora Lab Jailbreaks iOS 11.2 Successfully Qihoo 360 Vulcan Team has Achieved iOS 11.3 Jailbreak iOS 11.2.2 Jailbreak With Electra Might Be Possible, Here’s What You Need To Know Apple Still Signing iOS 11.3 Beta 5/6, Downgrade to It to Jailbreak Your iPhone iOS 11.1.2 Exploit async_wake ipa is Released iOS 10.3.X 64-Bit Jailbreak is Coming Soon Alibaba Pandora Lab Untethered Jailbreaks iOS 12 Successfully Demo for Jailbreak iOS 11.3.1 by @S0rryMybad