iOS 7.0.6 Released with Important Security Fix for iPhone, iPad, & iPod touch

Feb 21, 2014 - 17 Comments

iOS 7.0.6

Apple has released a small but critical update for the iPhone, iPad, and iPod touch, versioned as iOS 7.0.6 with a build number of 11b651. The security update notably includes an important fix for SSL connection verification, and weighs in between 13MB and 36MB, depending on the iOS device being installed upon. This update should be installed on all compatible devices as soon as possible.


The initial release notes bundled with the iOS 7.0.6 update are very brief, stating simply “This security update provides a fix for SSL connection verification.” Apple elaborates a bit further on their knowledge base article, providing the following details for what the update resolves:

"Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS

Description: Secure Transport failed to validate the authenticity of the connection. This issue was addressed by restoring missing validation steps."

In simple terms, that means this security update prevents a potential threat of a specific man-in-the-middle attack.

It is possible some other minor bug and security fixes are included in the release, though due to the small size of the download users should not expect much.

Downloading iOS 7.0.6

The easiest way to download iOS 7.0.6 is through the Over-The-Air update mechanism, accessible through the Settings app > Software Update. Choose “Download and Install” and agree to the terms and conditions to start the update process. Despite being a minor update, it can take a while to install as the ‘verifying update’ process lingers for a while on the home screen, before rebooting to the Apple logo where the actual firmware update occurs. Users can also choose to update through iTunes.

It is always advisable to back up iOS devices before updating system software, even with small releases like this.

iOS 7.0.6 IPSW Direct Download Links

Users who prefer to use .IPSW firmware files to update devices manually can choose to download the complete update directly from Apple’s servers using the links below:

In addition to iOS 7.0.6, Apple also released iOS 6.1.6, which includes the same security fix, for iPhone 3GS and iPod Touch 4th generation devices that are not able to run iOS 7. The build number for iOS 6.1.6 is 10b500. An update to Apple TV, versioned as 6.0.2, is also available.

A more sizable update is expected to arrive in the coming weeks with the iOS 7.1 public release, which is currently in beta.

.

Related articles:

Posted by: Paul Horowitz in iPad, iPhone, News

17 Comments

» Comments RSS Feed

  1. Ian says:

    What if we have a retina iPad but don’t want to “upgrade” to iOS 7? Any option for us? Probably nothing easy. Stay tuned for the press conference from apple talking about the “unprecedented” uptake of iOS 7. I can guarantee that number will include a lot of unwilling adopters.

  2. hirota says:

    same here. the battery is drainning like crazy after updating 7.0.6
    WTF.

  3. Garth Azzollini says:

    I too am experiencing battery drain on my Iphone 5 since the update. I’m really getting sick of this, Apple fix the problem because I will change to Samsung if this continues.

  4. Mark M says:

    Battery life is horrible on my 5 after update. Will go from 50% to 20% within literally 2 minutes and only face book running. Closed everything else. No wifi or Bluetooth on. Original 5 so maybe battery finally gave out but didn’t happen til after update.

  5. ChrisMc says:

    An chance 6.16 will work on an iPhone 4? I’m still on 6.0.

  6. BX Macman says:

    Your Apple TV will offer to install the update also.

  7. Ben says:

    This is an important security fix and all iOS users should update to iOS 7.0.6 right away, here is the impact/description from Apple in the extended (yet still limited) release notes:

    “Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS

    Description: Secure Transport failed to validate the authenticity of the connection. This issue was addressed by restoring missing validation steps.”

  8. Chris Cheng says:

    Battery life seems to be worse with iOS 7.0.6. Am I crazy?

  9. w0n t0n says:

    Does this ‘security fix’ prevent the GBA emulator from installing through iOS Safari? Maybe it patches the jailbreak too?

    Those are my two guesses, oddly quick release of a security update that is otherwise inconsequential given the enormous amount of bugs with iOS 7.

    • ph says:

      GBA4iOS still runs on my iPhone just fine after installing iOS 7.0.6 update, but have heard reports of it no longer installing.

  10. Dogen says:

    Well, as usual with a tiny update, it turns on BLUETOOTH when you have it turned off. So remember to turn that back off if you notice your battery eating it down.

    Why can’t Apple fix that?

    HDR turning itself off bug is still around too. Annoying.

Leave a Reply

 

Shop on Amazon.com and help support OSXDaily!

Subscribe to OSXDaily

Subscribe to RSS Subscribe to Twitter Feed Follow on Facebook Subscribe to eMail Updates

Tips & Tricks

News

iPhone / iPad

Mac

Troubleshooting

Shop on Amazon to help support this site