By John Gruber

• Archive
• The Talk Show
• Dithering
• Projects
• Contact
• Colophon
• RSS Feed
• Twitter
• Sponsorship

iOS 7.0.6

Fixes a serious security flaw:

Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS

Description: Secure Transport failed to validate the authenticity of the connection. This issue was addressed by restoring missing validation steps.

★ Friday, 21 February 2014