checkra1n
checkra1n is a semi-tethered Jailbreak for Apples iPhone Operating System (iOS). It was developed by Kim Jong Cracks (mainly by Luca Todesco) and officially released in 2019. It is based on the checkm8 bootrom exploit published by axi0mX.[1] [2]
Checkm8 exploit[edit]
The Checkm8 exploit is a bootrom exploit with a CVE ID of CVE-2019-8900 and is utilized by Checkra1n in their software to execute usinged code on ios devices[3]
BootROM[edit]
BootROM is the initial stage of the iOS booting process and the first thing executed when an iOS device is turned on. BootROM is the root of trust for the hardware within the secure boot chain. BootROM vulnerabilities are the trap-door making it possible for attackers to take control over the booting process and run unsigned code execution on devices hence the checkm8 exploit is possible [3]
History of Exploit[edit]
The Exploit was first publicly available on September 27th, 2019 when axi0mX released it to his GitHub repo. This was then announced in one of his tweets [4] which contained the exploit description and other additional information.The thread said that he found the use-after-free vulnerability in the USB code during iBoot patch diffing for iOS 12 beta version back in the Summer 2018.
Currently Supported Devices & Versions[5][edit]
Currently Supported Devices:[edit]
Currently Supported Firmware:[edit]
- iOS 12.0.x
- iOS 12.1.x
- iOS 12.2.x
- iOS 12.3.x
- iOS 12.4.x
- iOS 12.5.x
- iOS 13.0.x
- iOS 13.1.x
- iOS 13.2.x
- iOS 13.3.x
- iOS 13.4.x
- iOS 13.5.x
- iOS 13.6.x
- iOS 13.7.x
- iOS 14.0.x
- iOS 14.1.x
- iOS 14.2.x
- iOS 14.3.x
- iOS 14.4.x (Partially supported, "Allow untested iOS versions" must be checked)
- iOS 14.5.x
- iOS 14.6.x
- iOS 14.7.x
- iOS 14.8.x
checkra1n supports iOS 12.0 and newer, iPadOS 13.1 and newer and tvOS 12.0 and newer. Experimental support was added in 0.9.9 for the T2 processor. Partial support for HomePod was added in 0.12.1 beta.
Software Support[edit]
Checkra1n is currently available on both MacOS and Linux (x86_64,arm,arm64 and i386 architectures) operating systems with “ongoing work” for compatibility on Windows.
References[edit]
- ↑ "theiphonewiki". theiphonewiki.com. Retrieved 2022-03-10.
- ↑ "doubleblak". doubleblak.com. Retrieved 2022-03-10.
- ↑ 3.0 3.1 "Checkm8". checkm8.info. Retrieved 2022-03-10.
- ↑ "axi0mX's tweet". twitter.com. Retrieved 2022-03-10.
- ↑ "chekra1n". checkra.in. Retrieved 2022-02-04.
This article "Checkra1n" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:Checkra1n. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.
