Apple ships iOS 4.1, patches FaceTime flaw
Quashes 24 security bugs, targets problems with proximity sensor, Bluetooth and degraded iPhone 3G performance
Computerworld - As expected, Apple today released the iOS 4.1 update for its iPhone and iPod Touch.
Apple also patched two dozen security vulnerabilities in its mobile operating system, most of them rated "critical," including the first ever in the firm's new FaceTime video calling software.
The update, which weighed in at between 308MB and 590MB in size depending on the destination device, hit Apple's download servers shortly after 1 p.m. ET on Wednesday.
Computerworld confirmed that the update was available, and downloaded iOS 4.1 without problems.
Last weekend, Apple's U.K. site briefly indicated that the update, which CEO Steve Jobs said would be released this week, would be available today. The site was quickly revised to show only the notice "Coming soon," however.
Along with new functionality included with iOS 4.1 -- ranging from "high dynamic range" (HDR) photography that produces more detail in over- and under-exposed areas, to the launch of Apple's Game Center multi-player online network -- Jobs also promised that the update would fix some of the bugs in iOS 4.0 that users have been complaining about since that version's June 21 debut.
Owners of older iPhones, especially 2008's iPhone 3G, have flooded Apple's support forum with reports of degraded performance since they upgraded to iOS 4.0.
Other parts of the upgrade kicked off Game Center, the company's multi-player online gaming network, and are supposed to fix problems with Bluetooth connectivity and the iPhone's proximity sensor. Customers have hammered Apple over the proximity issue, saying that the sensor didn't deactivate the touchscreen when the smartphone was held up to their faces, causing dropped calls, muted calls and "face-dialed" numbers.
Apple also patched 24 vulnerabilities in iOS with the update, including 19 tagged with the phrase "arbitrary code execution," Apple-speak for a critical vulnerability. Unlike other operating system makers, like Microsoft, Apple does not rank flaws with a threat-scoring system.
Over 80% of the bugs were in WebKit, the open-source browser engine that powers the mobile version of Safari integrated in iOS, as well as Safari on the desktop and Google's Chrome browser.
One of the four non-WebKit vulnerabilities was in FaceTime, Apple's new video chat application that debuted in June on the iPhone 4, and is also included on the new fourth-generation iPod Touch, which went on sale today in the company's retail stores.
The bug could let others redirect FaceTime calls, Apple said.
"An issue in the handling of invalid certificates may allow an attacker in a privileged network position to redirect FaceTime calls," said Apple's advisory. "This issue is addressed through improved handling of certificates."
Apple credited Aaron Sigel, who used to work in the company's security group, for reporting the bug. Sigel confirmed today that Apple's patch did the job.
The iOS 4.1 update is available for the iPhone 4, 3GS and 3G, as well as the iPod Touches introduced in 2008, 2009 and on Sept. 1, 2010. The oldest of Apple's iPhone and iPod Touch do not support iOS 4, and so will not receive today's upgrade.
Apple requires users to download iOS 4.1 to their Windows PC or Mac using iTunes, then sync their iPod Touches or iPhones to the machine to install the upgrade.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer or subscribe to Gregg's RSS feed . His e-mail address is firstname.lastname@example.org.
Apple's iOS 4
- Facebook blocks access to hidden iPad app
- LTE iPhone unlikely this year, says analyst
- Apple slams Amazon's Android e-store as 'inferior'
- Apple iOS: Why it's the most secure OS, period
- Apple launches iWork productivity apps for iPhone
- Analysts split on iPhone over-the-air-update buzz
- Apple's iOS 4.3 a welcome update for iPad, iPhone
- iOS 4.3 boosts first-gen iPad browser speed by 18%
- Update: Apple jumps gun, delivers early iOS 4.3 update for AT&T iPhone, iPad
- iPhone dev knocks Apple over vague new sub rules
Read more about iOS in Computerworld's iOS Topic Center.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Is Your Big Data Solution Production-Ready? Read "Is Your Big Data Solution Production-Ready?" now, and discover best practices and actionable steps to implementing a production-ready big data solution.
- Pay-as-you-Grow Data Protection: IBM Tivoli's Full-featured Data Protection Suite for Small to Medium Businesses IBM Tivoli Storage Manager Suite for Unified Recovery gives small and medium businesses the opportunity to start out with only the individual solutions...
- Streamline Data Protection with IBM Tivoli Storage Manager Operations Center IBM Tivoli Storage Manager (TSM) has been an industry-standard data protection solution for two decades. But, where most competitors focus exclusively on Backup...
- Simplify and Consolidate Data Protection for Better Business Results Learn about IBM® Tivoli® Storage Manager Operations Center, which provides advanced visualization, built-in analytics and integrated workflow automation features that leapfrog traditional backup...
- Webinar: Building a Big Data solution that's production-ready Big data solutions are no longer just a nice-to-have.
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well... All iOS White Papers | Webcasts