Apple today released iOS 4.3.5, an incremental update focusing primarily on a security issue with certificate validation. Arriving just over a week after iOS 4.3.4, today’s update marks the second security oriented iOS release in only 10 days.
According to the support document accompanying the software’s release, the update prevents attackers with privileged network positions from capturing or modifying data in sessions protected by SSL/TLS. A full summary and description of changes can be found here.
While iOS 4.3.5 does not contain any additional new features, its prompt release does demonstrate that Apple is taking iOS security increasingly more seriously. As the company plans to “cut the cord” with iOS 5 this fall, post-PC devices such as iPad will inevitably replace aging computers for some users—simultaneously making themselves more viable and susceptible for attack.
The relatively quick release of iOS 4.3.4 a week and a half ago and the very quick debut of 4.3.5 today clearly indicate Apple is paying attention to its community and making attempts to squash bugs soon after they’re identified.
iOS 4.3.5 is compatible with the following list of devices, and is available via direct download or through iTunes.
- iPhone 4 (GSM model)
- iPhone 3GS
- iPad 2
- iPad
- iPod touch (4th generation)
- iPod touch (3rd generation)
iOS 4.2.10 is compatible with the CDMA (Verizon) model of iPhone 4 and is available via direct download, or by connecting a CMDA iPhone 4 to iTunes.