Download Firmware Apple iOS 4.0.2
Apple last week released an update for the fourth-generation operating system for the iPhone and iPod touch. Updating the software is simple: all that needs to be done is pair the iPhone with a Windows or Mac OS X computer with version 9.2 of iTunes installed. Version 4.0.2 fixes two security vulnerabilities:
iOS 4.0.2 Update for iPhone and iPod touch
- FreeType
CVE ID: CVE-2010-1797
Available for: iOS 2.0 through 4.0.1 for iPhone 3G and later, iOS 2.1 through 4.0 for iPod touch (2nd generation) and later
Impact: Viewing a PDF document with maliciously crafted embedded fonts may allow arbitrary code execution
Description: A stack buffer overflow exists in FreeType’s handling of CFF opcodes. Viewing a PDF document with maliciously crafted embedded fonts may allow arbitrary code execution. This issue is addressed through improved bounds checking. - iOSurface
CVE ID: CVE-2010-2973
Available for: iOS 2.0 through 4.0.1 for iPhone 3G and later, iOS 2.1 through 4.0 for iPod touch (2nd generation) and later
Impact: Malicious code running as the user may gain system privileges
Description: An integer overflow exists in the handling of IOSurface properties, which may allow malicious code running as the user to gain system privileges. This issue is addressed through improved bounds checking.
| Version number | 4.0.2 |
| Release status | Final |
| Website | apple |
| Download | |
| License type | Freeware |

