Over the weekend, we informed you about an formidable project referred to as kernel file descriptor (or kfd for brief) that may assist jailbreak builders obtain kernel learn and write privileges on firmware up to and together with iOS & iPadOS 16.5.
This week, hacker and developer tihmstar Twitter.com/tihmstar/standing/1683793755676069888?s=46&t=qqvuoLV9uFvc9wARCfQjWQ”>Tweeted an replace about their project called libpatchfinder, which may make discovering offsets on iOS & iPadOS 16 simpler for anybody who makes an attempt to make a jailbreak.
Offsets are required for exploits to make them viable in jailbreaking, which is why that is essential.
According to Dopamine lead developer Lars Fröder, we’re only a Pointer Protection Layer (PPL) bypass away from having the whole lot we want to jailbreak firmware up to and together with iOS & iPadOS 16.5. At this time, a PPL bypass isn’t but accessible for these variations.
Fröder additionally stated he doesn’t plan to work on an iOS & iPadOS 16 jailbreak, however didn’t rule it out both. Instead, he stated he wouldn’t make bulletins about one, possible a consequence of how Dopamine was open-sourced and the beta leaked earlier than it was supposed to be made publicly accessible.
Many folks are actually contemplating whether or not they need to DelayOTA to iOS or iPadOS 16.5 from an older firmware, and that’s a troublesome one as a result of ordinarily, you need to keep on the bottom attainable firmware till a jailbreak comes out. But now now we have a method to obtain kernel learn and write on firmware as new as iOS & iPadOS 16.5, so we’ll attempt to spell out our suggestion beneath.
If you’re already jailbroken, particularly on a TrollStore-supported firmware with Dopamine, then we suggest staying the place you’re and conserving your present jailbreak. If you’re not but jailbroken, and are ready for a jailbreak on iOS or iPadOS 16, then you will have the choice to use the DelayOTA methodology to improve to iOS or iPadOS 16.5 proper now and for fairly some time longer.
The DelayOTA methodology enables you to improve to an unsigned firmware up to 90 days after Apple stops signing it, and because it was solely simply unsigned on the finish of June, you continue to have round two extra months to wait and see what occurs with kfd and whether or not a PPL bypass comes out.
All of this, as well as to the excessive hopes that somebody can work on a jailbreak.
As extra info surfaced about exploits, bypasses, and the whole lot in between, we’ll preserve you apprised. It shall be attention-grabbing to see what materializes from all of this, so preserve it tuned to iDB for the most recent updates as they occur.