As Apple’s operating systems have evolved to include more customization options and capabilities, jailbreak has lost popularity among iPhone users. Although jailbreak isn’t as popular as it used to be, the customization that comes with it is still an attraction for a certain audience.
Some users still want to be able to change the appearance and functionality of the iPhone and resort to system security loopholes to make changes. On this occasion, however, we will not need a jailbreak, because someone managed to the iPhone is much more like a Samsung with a single exploit.
A proof of concept, but eye-catching
Zhuowei Zhang hatuiteado on an application that you have developed as a proof of concept. Proof that by using the CVE-2022-46689 security flaw, you were able to replace system default font and choose from other options without any jailbreak. This exploit is present on iPhones running iOS 16.1.2 or earlier, as Apple shut it down, along with a long list of security improvements, in iOS 16.2.
Using this app/experiment you can change the system font to DejaVu Sans Condensed, Serif, Mono and Choco Cooky, the default font provided on all Samsung phones. One aspect, it must be said by the appearance of catches, of the most curious. Changes, yes, disappear after a reboot.
Beyond the curiosity of this experiment, research like that of Zhang remember the importance of always updating our devices. Leaving aside specific news, updates are the occasion where our operating systems become more secure and prevent the use of exploits not to change the source of the system, but to achieve much more dangerous results.
Although Zhang’s app doesn’t require a jailbreak, installing it isn’t easy either, as you have to compile the Xcode project manually or sign the IPA file with a developer certificate in order to install it. Still, it’s striking how the bug fixes Apple routinely releases after the operating system update actually translates into better protections in the real world. A tangible example which, although totally harmless, reminds us that, when it comes to safety, no one has the last word.
