Difference between revisions of "Redsn0w"

From The iPhone Wiki
Jump to: navigation, search
m (0.9.7 beta 5)
(0.9.7 series)
 
(143 intermediate revisions by 16 users not shown)
Line 1: Line 1:
  +
{{lowercase}}
{{DISPLAYTITLE:redsn0w}}
 
  +
{{float toc|left}}
[[Image:Redsn0w.png|thumb|redsn0w on Mac OS X]]
 
  +
[[File:Redsn0w.png|thumb|redsn0w on OS X]]
redsn0w was originally called [[QuickPwn]] but due to the theft and exploitation of the name, QuickPWN by quickpwn.com, as of iOS 3.0, QuickPwn was discontinued and redsn0w (at the time, version 0.7) was converted into a [[jailbreak]]ing tool for all current devices as well as providing [[unlock]] support the [[M68ap|iPhone 2G]]. As of version 0.8, the [[N88ap|iPhone 3GS]] can also be jailbroken through redsn0w.
 
  +
'''redsn0w''' is an [[iDevice]] [[jailbreak]]ing tool for OS X and Windows. Originally called [[QuickPwn]], but due to exploitation of the name by <code>www.quickpwn.com</code>, version 0.7 was renamed to redsn0w and added [[unlock]]ing of supported [[iDevice|devices]].
   
  +
Version 0.8 added support for jailbreaking the [[N88AP|iPhone 3GS]].
Version 0.9 beta 3 was released for Windows and Mac OS X, and it allows iOS 3.0 through 3.1.2 to be jailbroken. It includes support for all devices except the [[N18ap|iPod touch 3G]], and supports a [[tethered jailbreak]] on [[N88ap|iPhone 3GS]] units and [[N72ap|iPod touch 2G]] units with new bootroms. In addition, this version supports custom boot and recovery mode logos, as well as verbose mode on bootup.
 
   
  +
Version 0.9b3 was released for Windows and Mac OS X, and it allows iOS 3.0 through 3.1.2 to be jailbroken. It includes support for all devices except the [[N18AP|iPod touch (3rd generation)]], and supports a [[tethered jailbreak]] on [[N88AP|iPhone 3GS]] units and [[N72AP|iPod touch (2nd generation)]] units with new bootroms. In addition, this version supports custom boot and recovery mode logos, as well as verbose mode on bootup.
Version [http://wikee.iphwn.org/howto:rs9 0.9.2] supports jailbreaking of all iDevices (at the time) with iOS 3.0 through 3.1.2 on Windows and Mac OS X, as well as 3.1.3 on [[S5L8900]] devices. Version 0.9.3 adds support of internet tethering IPCC hack on those devices and 0.9.4 allows jailbreaking of early [[N72ap|iPod touch 2G]] with iOS 3.1.3.
 
   
Version [http://wikee.iphwn.org/howto:rsbeta 0.9.5b5-5] supports jailbreaking the [[N82ap|iPhone 3G]] and [[N72ap|iPod touch 2G]] ([[iBoot-240.4|old bootrom]]) with iOS 4.0 on Windows and Mac OS X.
+
Version [http://wikee.iphwn.org/howto:rs9 0.9.2] supports jailbreaking of all iDevices (at the time) with iOS 3.0 through 3.1.2 on Windows and Mac OS X, as well as 3.1.3 on [[S5L8900]] devices. Version 0.9.3 adds support of internet tethering IPCC hack on those devices and 0.9.4 allows jailbreaking of early [[N72AP|iPod touch (2nd generation)]] with iOS 3.1.3.
   
redsn0w [http://blog.iphone-dev.org/post/1718400992 0.9.6b6] can jailbreak iOS 3.2.2, 4.1, and 4.2.1 for every device that supports those versions (except Apple TV 2G), on Windows and Mac OS X.
+
Version [http://wikee.iphwn.org/howto:rsbeta 0.9.5b5-5] supports jailbreaking the [[N82AP|iPhone 3G]] and [[N72AP|iPod touch (2nd generation)]] ([[Bootrom 240.4|old bootrom]]) with iOS 4.0 on Windows and Mac OS X.
  +
  +
Version [http://blog.iphone-dev.org/post/1718400992 0.9.6b6] supports jailbreaking iOS 3.2.2, 4.1, and 4.2.1 for every device that supports those versions (except Apple TV (2nd generation)), on Windows and Mac OS X.
  +
  +
Version [http://blog.iphone-dev.org/post/14857834236 0.9.10b1] adds support for iOS 4.2.6 through 5.0.1 (though iOS 4.2.9, 4.2.10, 4.3.4, 4.3.5, and 5.0 are tethered on devices invulnerable to the [[0x24000 Segment Overflow]]). This build of redsn0w is not capable of jailbreaking [[S5L8940]] or newer devices.
  +
{{clear}}
   
 
== Credit ==
 
== Credit ==
Line 15: Line 21:
   
 
== Versions ==
 
== Versions ==
  +
===Initial releases===
{| class="wikitable" width="100%" style="font-size: 90%"
 
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
 
|-
 
|-
  +
! Lite
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
  +
| Unknown
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
  +
|
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
  +
* Tethered jailbreak for [[N72AP|iPod touch (2nd generation)]] on iOS 2.1.1 with [[ARM7 Go]]
 
|-
 
|-
  +
! 0.3
! style="white-space: nowrap;" |
 
  +
| Unknown
 
  +
| {{yes}}
==== 0.1 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
| ?
 
 
|
 
|
* Jailbreak for the [[n72ap|iPod touch 2G]].
+
* Untethered jailbreak for the [[N72AP|iPod touch (2nd generation)]] on iOS 2.2.1 with [[ARM7 Go]] and [[0x24000 Segment Overflow]]
  +
|}
  +
===0.7.x series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
 
|-
 
|-
  +
! 0.7
  +
| Unknown
  +
| {{yes}}
  +
| {{yes}}
  +
| style="white-space: nowrap;" |
  +
* Untethered jailbreak for all devices but [[N88AP|iPhone 3GS]]
 
|-
 
|-
  +
! 0.7.1
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.7 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
  +
| Bug fixes for versions 0.7
|
 
 
 
|-
 
|-
  +
! 0.7.2
! style="white-space: nowrap;" |
 
  +
| Unknown
  +
| {{yes}}
  +
| {{yes}}
  +
| Bug fixes for versions 0.7
  +
|}
   
==== 0.8 ====
+
===0.8.x series===
  +
{| class="wikitable"
| style="white-space: nowrap;" | July 2009
 
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.8
  +
| {{date|2009|07|07}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
  +
* Performs an [[untethered jailbreak]] on iOS 3.0/3.0.1 (when pointed at 3.0) for all devices supported by those firmware.
* Jailbreaks iPhone OS 3.0 on the [[n88ap|iPhone 3GS]] only.
 
 
|-
 
|-
  +
|}
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
   
  +
===0.9.0-0.9.4 releases===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
 
|-
 
|-
  +
! 0.9.2
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.9.2 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
* Supports 3.0-3.1.2 on all iPhones and iPod touches ([[tethered jailbreak|tethered]] for newer devices with [[0x24000 Segment Overflow]] closed)
+
* Supports 3.0-3.1.2 on all iPhones and iPod touches ([[tethered jailbreak|tethered]] for newer devices with [[0x24000 Segment Overflow]] patched.)
 
|-
 
|-
  +
! 0.9.3
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.9.3 beta ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
Line 76: Line 110:
 
* Contains the IPCC hack to enable tethering on the iPhone 3G and 3GS.
 
* Contains the IPCC hack to enable tethering on the iPhone 3G and 3GS.
 
|-
 
|-
  +
! 0.9.4
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.9.4 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
* Supports jailbreaking iOS 3.1.3 on [[M68ap|iPhone 2G]], [[N82ap|iPhone 3G]], [[N45ap|iPod touch 1G]], [[N72ap|iPod touch 2G]] ([[iBoot-240.4|old bootrom]])
+
* Supports jailbreaking iOS 3.1.3 on [[M68AP|iPhone]], [[N82AP|iPhone 3G]], [[N45AP|iPod touch]], [[N72AP|iPod touch (2nd generation)]] ([[Bootrom 240.4|old bootrom]])
 
|-
 
|-
  +
|}
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
  +
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
  +
===0.9.5 series===
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
  +
{| class="wikitable"
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
  +
! Version
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
 
|-
 
|-
  +
! 0.9.5b3
! style="white-space: nowrap;" |
 
  +
| 21 Jun 2010
 
==== 0.9.5 beta 3 ====
 
| style="white-space: nowrap;" | June 21, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
 
|
 
|
* Supports jailbreaking iOS 4.0 on [[N82ap|iPhone 3G]] and [[N72ap|iPod touch 2G]] ([[iBoot-240.4|old bootrom]])
+
* Supports jailbreaking iOS 4.0 on [[N82AP|iPhone 3G]] and [[N72AP|iPod touch (2nd generation)]] ([[Bootrom 240.4|old bootrom]])
 
|-
 
|-
  +
! 0.9.5b4
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.9.5 beta 4 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
Line 109: Line 141:
 
* Resolved a problem with iBooks.
 
* Resolved a problem with iBooks.
 
|-
 
|-
  +
! 0.9.5b5
! style="white-space: nowrap;" |
 
  +
| Unknown
 
==== 0.9.5 beta 5 ====
 
| style="white-space: nowrap;" | Unknown
 
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
Line 118: Line 148:
 
* Supposed to fix any APN or MMS issues that users were seeing.
 
* Supposed to fix any APN or MMS issues that users were seeing.
 
|-
 
|-
  +
|}
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
  +
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
  +
===0.9.6 series===
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
  +
{| class="wikitable"
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
  +
! Version
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
 
|-
 
|-
  +
! 0.9.6b1
! style="white-space: nowrap;" |
 
  +
| {{date|2010|09|21}}
 
==== 0.9.6 beta 1 ====
 
| style="white-space: nowrap;" | September 21, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
* Supports jailbreaking iOS 4.0-4.1 on [[N82ap|iPhone 3G]] and [[N72ap|iPod touch 2G]] ([[tethered jailbreak|tethered]] on [[iBoot-240.5.1|new bootrom]])
+
* Supports jailbreaking iOS 4.0-4.1 on [[N82AP|iPhone 3G]] and [[N72AP|iPod touch (2nd generation)]] ([[tethered jailbreak|tethered]] on [[Bootrom 240.5.1|new bootrom]])
 
|-
 
|-
  +
! 0.9.6b2
! style="white-space: nowrap;" |
 
  +
| {{date|2010|10|31}}
 
==== 0.9.6 beta 2 ====
 
| style="white-space: nowrap;" | October 31, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
* Supports jailbreaking iOS 3.2.2 and 4.0-4.1 on every device that supports those firmwares (except [[N72ap|iPod touch 2G]] with [[iBoot-240.5.1|new bootrom]]) .
+
* Supports jailbreaking iOS 3.2.2 and 4.0-4.1 on every device that supports those firmwares (except [[N72AP|iPod touch (2nd generation)]] with [[Bootrom 240.5.1|new bootrom]]) .
** The [[N82ap|iPhone 3G]], [[N72ap|iPod touch 2G]] ([[iBoot-240.4|old bootrom]]), and [[N88ap|iPhone 3GS]] ([[iBoot-359.3|old bootrom]]) can also have custom boot logos.
+
** The [[N82AP|iPhone 3G]], [[N72AP|iPod touch (2nd generation)]] ([[Bootrom 240.4|old bootrom]]), and [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]) can also have custom boot logos.
 
* The Windows version also includes a function that permits users to restore to a custom [[IPSW File Format|IPSW]], akin to [[PwnageTool]]'s DFU button.
 
* The Windows version also includes a function that permits users to restore to a custom [[IPSW File Format|IPSW]], akin to [[PwnageTool]]'s DFU button.
 
|-
 
|-
  +
! 0.9.6b3
! style="white-space: nowrap;" |
 
  +
| {{date|2010|11|21}}
 
==== 0.9.6 beta 3 ====
 
| style="white-space: nowrap;" | November 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
Line 153: Line 181:
 
* Supports the installation of custom bundles
 
* Supports the installation of custom bundles
 
|-
 
|-
  +
! 0.9.6b4
! style="white-space: nowrap;" |
 
  +
| {{date|2010|11|23}}
 
==== 0.9.6 beta 4 ====
 
| style="white-space: nowrap;" | November 23, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
* Jailbreaks iOS 4.1-4.2.1 on all supported devices.
+
* Jailbreaks iOS 4.1-4.2.1 on all compatible devices.
 
** [[Tethered jailbreak]] on devices that are not vulnerable to [[Pwnage 2.0]] or [[0x24000 Segment Overflow]].
 
** [[Tethered jailbreak]] on devices that are not vulnerable to [[Pwnage 2.0]] or [[0x24000 Segment Overflow]].
 
|-
 
|-
  +
! 0.9.6b5
! style="white-space: nowrap;" |
 
  +
| {{date|2010|11|28}}
 
==== 0.9.6 beta 5 ====
 
| style="white-space: nowrap;" | November 28, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
  +
* Can update the baseband on the [[X-Gold 608]] to [[06.15.00]], allowing the reuse of the [[AT+XAPP Vulnerability]]
* Jailbreaks iOS 4.1-4.2.1 on all supported devices.
 
** [[Tethered jailbreak]] on devices that are not vulnerable to [[Pwnage 2.0]] or [[0x24000 Segment Overflow]].
 
* Can update the baseband on the [[X-Gold 608]] to [[6.15.00]], allowing the reuse of the [[AT+XAPP Vulnerability]]
 
 
|-
 
|-
  +
! 0.9.6b6
! style="white-space: nowrap;" |
 
  +
| {{date|2010|12|01}}
 
==== 0.9.6 beta 6 ====
 
| style="white-space: nowrap;" | December 1, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
| {{yes}}
 
|
 
|
  +
* Allows you to "deactivate" a hacktivated phone, so sbingner's [http://www.bingner.com/SAM.html Subscriber Artificial Module] (SAM) can trick your iPhone and [[iTunes]] into creating legitimate activation tickets.
* Jailbreaks iOS 4.1-4.2.1 on all supported devices.
 
** [[Tethered jailbreak]] on devices that are not vulnerable to [[Pwnage 2.0]] or [[0x24000 Segment Overflow]].
 
* Can update the baseband on the [[X-Gold 608]] to [[6.15.00]], allowing the reuse of the [[AT+XAPP Vulnerability]]
 
* Allows you to "deactivate" a hacktivated phone, so sbinger's [http://www.bingner.com/SAM.html Subscriber Artificial Module] (SAM) can trick your iPhone and [[iTunes]] into creating legitimate activation tickets.
 
 
|-
 
|-
  +
! 0.9.6 release candidate 7
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
  +
| {{date|2011|01|02}}
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
  +
|
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
  +
* Introduced command-line arguments to bypass some screens.
  +
** -b <filename> to specify your own boot logo PNG
  +
** -i <filename> to specify your reference IPSW
  +
** -j to ask redsn0w to “Just boot now tethered for now”
  +
** -o for [[N88AP|iPhone 3GS]] and [[N72AP|iPod touch (2nd generation)]] units vulnerable to [[0x24000 Segment Overflow]].
 
|-
 
|-
  +
! 0.9.6 release candidate 8
! style="white-space: nowrap;" |
 
  +
| {{date|2011|01|05}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Informs users if a boot logo PNG is invalid, and why.
  +
* Introduced the "-a" command-line argument to eliminate clicking.
  +
|-
  +
! 0.9.6 release candidate 9
  +
| {{date|2011|04|03}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds support for jailbreaking iOS 4.3.1 on all compatible devices except the [[iPad 2]] and [[K66AP|Apple TV (2nd generation)]].
  +
* New command line parameters k and d [http://twitpic.com/4gg8n1]:
  +
** -k --kernelcache=<str> use specified kernelcache (advanced)
  +
** -d --devicetree=<str> use specified devicetree (advanced)
  +
|-
  +
! 0.9.6 release candidate 10
  +
| {{date|2011|04|07}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Added boot animations
  +
* Removed misleading Settings
  +
|-
  +
! 0.9.6 release candidate 11
  +
| {{date|2011|04|07}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Makes the boot animation a bit more robust
  +
|-
  +
! 0.9.6 release candidate 12
  +
| {{date|2011|04|08}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fix any lingering issues with the boot animation
  +
|-
  +
! 0.9.6 release candidate 13
  +
| {{date|2011|04|19}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds support for jailbreaking iOS 4.3.2 on all compatible devices except the [[iPad 2]].
  +
** A bug existed that prevented the [[N90AP|iPhone 4 (iPhone3,1)]] from being jailbroken on iOS 4.3.2.
  +
|-
  +
! 0.9.6 release candidate 14
  +
| {{date|2011|04|19}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fixes an issue that prevented the [[N90AP|iPhone 4 (iPhone3,1)]] from being jailbroken.
  +
|-
  +
! 0.9.6 release candidate 15
  +
| {{date|2011|05|06}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds support for jailbreaking iOS 4.3.3 on all compatible devices except the [[iPad 2]].
  +
|-
  +
! 0.9.6 release candidate 16
  +
| {{date|2011|05|16}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fixes the [[N88AP|iPhone 3GS]]/[[N90AP|iPhone 4 (iPhone3,1)]] side switch vibration issue found in jailbroken installations of iOS 4.3.3.
  +
|-
  +
! 0.9.6 release candidate 17
  +
| {{date|2011|05|20}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds advanced command line options for kernel hackers.
  +
|-
  +
! 0.9.6 release candidate 18
  +
| {{date|2011|06|14}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds support for jailbreaking iOS 4.2.8 on the [[N92AP|iPhone 4 (iPhone3,3)]].
  +
|-
  +
! 0.9.6 release candidate 19
  +
| {{date|2011|07|12}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* When a custom bundle is applied, most of the normal jailbreak steps (like stashing and untethering) are skipped.
  +
|}
   
==== 0.9.7 beta 1 ====
+
===0.9.7 series===
  +
{| class="wikitable"
| style="white-space: nowrap;" | December 26, 2010
 
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.7b1
  +
| {{date|2010|12|26}}
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
 
|
 
|
* Jailbreaks iOS 4.1-4.2.1 on all supported devices.
+
* Jailbreaks iOS 4.1-4.2.1 on all compatible devices.
 
** Able to achieve an [[untethered jailbreak]] on 4.2.1, provided the user has 4.2b3 [[SHSH]]s and the 4.2b3 [[IPSW File Format|IPSW]].
 
** Able to achieve an [[untethered jailbreak]] on 4.2.1, provided the user has 4.2b3 [[SHSH]]s and the 4.2b3 [[IPSW File Format|IPSW]].
 
*** This version of "Jailbreak Monte" has quite a number of bugs, particularly app switcher crashes and disabled [[Bluetooth]].
 
*** This version of "Jailbreak Monte" has quite a number of bugs, particularly app switcher crashes and disabled [[Bluetooth]].
 
|-
 
|-
  +
! 0.9.7b2
! style="white-space: nowrap;" |
 
  +
| {{date|2010|12|26}}
 
==== 0.9.7 beta 2 ====
 
| style="white-space: nowrap;" | December 26, 2010
 
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
 
|
 
|
* Fixes crashing bugs on GUI apps from redsn0w 0.9.7b1.
+
* Fixes crashing bugs on GUI apps.
* [[Bluetooth]] is non-functional due to a [[sandbox]] issue.
 
 
|-
 
|-
  +
! 0.9.7b3
! style="white-space: nowrap;" |
 
  +
| {{date|2010|12|27}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
* Fixes crashing bugs completely.
  +
|-
  +
! 0.9.7b4
  +
| {{date|2010|12|31}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
* usbmuxd integrated.
  +
|-
  +
! 0.9.7b5
  +
| {{date|2011|01|08}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
* Issues related to [[Bluetooth]] and the sandbox are resolved.
  +
|-
  +
! 0.9.7b6
  +
| {{date|2011|01|10}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
* fixes Skype
  +
|}
   
==== 0.9.7 beta 3 ====
+
===0.9.8 series===
  +
{| class="wikitable"
| style="white-space: nowrap;" | December 27, 2010
 
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.8b1
  +
| {{date|2011|06|10}}
 
| {{yes}}
 
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b and 5.0b2 (when pointed at the beta IPSW) on all compatible devices except the [[iPad 2]].
  +
|-
  +
! 0.9.8b2
  +
| {{date|2011|07|11}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b, 5.0b2, and 5.0b3 on all compatible device except the [[iPad 2]].
  +
* Fixes the iOS 5.0b3 sandbox issues present in the previous version.
  +
|-
  +
! 0.9.8b3
  +
| {{date|2011|07|16}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 4.3.4 and iOS 5.0b, 5.0b2, and 5.0b3.
  +
|-
  +
! 0.9.8b4
  +
| {{date|2011|07|23}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b, 5.0b2, 5.0b3, and 5.0b4.
  +
|-
  +
! 0.9.8b5
  +
| {{date|2011|08|09}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b, 5.0b2, 5.0b3, 5.0b4 and 5.0b5.
  +
|-
  +
! 0.9.8b6
  +
| {{date|2011|08|23}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b, 5.0b2, 5.0b3, 5.0b4, 5.0b5, and 5.0b6.
  +
|-
  +
! 0.9.8b7
  +
| {{date|2011|08|31}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b, 5.0b2, 5.0b3, 5.0b4, 5.0b5 and 5.0b6.
  +
* Performs a [[tethered jailbreak]] of iOS 4.3.5 and 4.2.10 without pointing at an older IPSW.
  +
* Performs a [[tethered jailbreak]] of iOS 5.0b6 on a new, silently changed (by Apple) [[K48AP|iPad]] IPSW.
  +
* Fixes a bug in the 4.2.10 jailbreak on the [[N92AP|iPhone 4 (iPhone3,3)]] [[tethered jailbreak]].
  +
|-
  +
! 0.9.8b7b
  +
| {{date|2011|09|02}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Performs a [[tethered jailbreak]] for [[iOS]] 4.3.4, 4.3.5, 4.2.9, 4.2.10 on all supported devices except the [[N88AP|iPhone 3GS]] (old bootrom) and the [[iPad 2]]
  +
* Performs an [[untethered jailbreak]] on [[iOS]] 4.1-4.3.3 on all supported devices except the [[iPad 2]]
  +
* Performs a [[tethered jailbreak]] on [[iOS]] 5.0b - 5.0b7 on all supported devices except the [[N88AP|iPhone 3GS]] (old bootrom) and [[iPad 2]]
  +
* Performs an [[untethered jailbreak]] on [[N88AP|Phone 3GS]] (old bootrom) on [[iOS]] 4.1-4.3.5 and 5.0b7
  +
* Fixed lingering issues with the [[N92AP|iPhone 4 (iPhone3,3)]] 4.2.10 [[tethered jailbreak]]
  +
|-
  +
! 0.9.8b7c
  +
| {{date|2011|09|06}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Same as 0.9.8b7b on all devices but [[N88AP|iPhone 3GS]] with [[06.15.00]] baseband
  +
* Fixes [[iTunes Errors#Error 1015|error 1015]] when restoring to stock 4.3.5 on [[N88AP|iPhone 3GS]] with [[06.15.00]] baseband.
  +
|}
  +
  +
===0.9.9 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
!0.9.9b1
  +
|{{date|2011|09|19}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Complete rewrite.
  +
*No longer requires IPSWs when jailbreaking public builds. When jailbreaking beta/Golden master firmwares, need to specify IPSW once, then auto-recognizes it.
  +
*Redsn0w now fetches SHSH from device, querys Cydia about saved blobs, stitches IPSWs with SHSH blobs (not for iPhones) and able to submit SHSH to cydia
  +
*Includes Terminal shell commands into the GUI.
  +
|-
  +
!0.9.9b2
  +
|{{date|2011|10|04}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Fixes Verizon iPhone 4 firmware detection
  +
*Fixes 'Fix Recovery'
  +
*Fixes for Stitching
  +
*Fixes for blob processing
  +
|-
  +
!0.9.9b3
  +
|{{date|2011|10|05}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Auto-detects the iOS 5.0 GM firmware now.
  +
*Allows a jailbreak (albeit still tethered apart from [[N88AP|iPhone 3GS]] [[Bootrom 359.3|old bootrom]]) on iOS5 GM
  +
|-
  +
!0.9.9b3a
  +
|{{date|2011|10|05}}
 
| {{no}}
 
| {{no}}
  +
| {{yes}}
 
|
 
|
  +
*Fixes a Windows-only caching bug
* Fixes crashing bugs completely from redsn0w 0.9.7b2.
 
  +
*Allows Windows users to rename the redsn0w exe to anything containing 'boot' to jump straight to the tethered boot stage on load (thus adding one-click tethered boot to Windows redsn0w)
* [[Bluetooth]] is non-functional due to a [[sandbox]] issue.
 
  +
*0.9.9b3 still works fine for Mac users except they don't have the new 'boot' rename feature that this version has
 
|-
 
|-
  +
!0.9.9b4
! style="white-space: nowrap;" |
 
  +
|{{date|2011|10|12}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Now auto-recognizes iOS 5 and no longer requires IPSW submission on iOS 5 jailbreak
  +
|-
  +
!0.9.9b5
  +
|{{date|2011|10|13}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
*Custom IPSW feature (from PwnageTool) for Baseband preservation.
   
  +
|-
==== 0.9.7 beta 4 ====
 
  +
!0.9.9b6
| style="white-space: nowrap;" | December 31, 2010
 
  +
|{{date|2011|12|18}}
 
| {{yes}}
 
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Fixes location services issues for iPhone 3GS with [[06.15.00]] baseband
  +
  +
|-
  +
!0.9.9b7
  +
|{{date|2011|10|21}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*You can now choose whether you want redsn0w or Cydia to Stash Applications (can shorten redsn0w session by 60%)
  +
|-
  +
!0.9.9b8
  +
|{{date|2011|11|03}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
*Jailbreaks iOS 5.0.1b (9A402) tethered on devices vulnerable to [[limera1n exploit]].
  +
**Untethered on [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]).
  +
|-
  +
!0.9.9b9
  +
|{{date|2011|12|19}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Jailbreaks iOS 5.0.1 tethered on devices vulnerable to [[limera1n exploit]].
  +
** Untethered on [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]).
  +
* iBooks fix.
  +
* Allows custom IPSW creation for [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]) without SHSH blobs.
  +
* Supports the 8 GB [[iPhone 4]].
  +
* Allows stitched IPSW creation for iOS 5.x.
  +
* Allows stitched IPSW creation for [[K94AP|iPad 2 (iPad2,2)]]s running iOS 4.3.x.
  +
* Built-in version check.
  +
|-
  +
!0.9.9b9b
  +
|{{date|2011|12|19}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Enables the “Custom” button in Windows to allow baseband preservation.
  +
* Warns against flashing baseband [[06.15.00]] on newer iPhone 3GS devices (2011 week 35) more explicitly.
  +
|-
  +
!0.9.9b9c
  +
|{{date|2011|12|19}}
 
| {{no}}
 
| {{no}}
  +
| {{yes}}
 
|
 
|
  +
* Special build for Windows users encountering issues with the update check.
* ubsmuxd integrated.
 
* [[Bluetooth]] is non-functional due to a [[sandbox]] issue.
 
 
|-
 
|-
  +
!0.9.9b9d
! style="white-space: nowrap;" |
 
  +
|{{date|2011|12|20}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Addresses a problem with the [[untethered jailbreak]] on [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]) devices.
  +
|}
   
==== 0.9.7 beta 5 ====
+
===0.9.10 series===
  +
{| class="wikitable"
| style="white-space: nowrap;" | January 8, 2011
 
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.10b
  +
| {{date|2011|12|27}}
 
| {{yes}}
 
| {{yes}}
  +
| {{yes}}
  +
|
  +
* The jailbreak for iOS 5.0.1 is now untethered.
  +
|-
  +
! 0.9.10b2
  +
| {{date|2011|12|27}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fixes an issue with launchctl that the untether caused.
  +
|-
  +
! 0.9.10b3
  +
| {{date|2011|12|28}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fixes a problem where re-running redsn0w over an existing jailbreak would cause [[Mobile Substrate]]-based apps to stop running until Mobile Substrate was installed again.
  +
|-
  +
! 0.9.10b3 novcheck
  +
| {{date|2011|12|29}}
 
| {{no}}
 
| {{no}}
  +
| {{yes}}
 
|
 
|
  +
* ?
* Issues related to [[Bluetooth]] and the sandbox are resolved.
 
 
|-
 
|-
  +
! 0.9.10b4
! style="background-color:#E9E9E9; text-align:center; width:150px;" | Version
 
  +
| {{date|2012|01|15}}
! style="background-color:#E9E9E9; text-align:center; width:175px;" | Release date
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Mac OS X-compatible?
 
  +
| {{yes}}
! style="background-color:#E9E9E9; text-align:center; width:75px;" | Windows-compatible?
 
  +
|
! style="background-color:#E9E9E9; text-align:center;" | Changes
 
  +
* Includes a fix for [[iBooks]] on iOS 5.0.1.
  +
* Addresses an issue where the launchctl fix didn't work sometimes.
  +
|-
  +
! 0.9.10b5
  +
| {{date|2012|01|29}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Circumvents jailbreak detection in [[iBooks]] that caused ~10% of images to display properly.
  +
|-
  +
! 0.9.10b5b
  +
| {{date|2012|02|01}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fixes an issue with custom ramdisks on the [[N82AP|iPhone 3G]] and [[N72AP|iPod touch (2nd generation)]].
  +
|-
  +
! 0.9.10b5c
  +
| {{date|2012|02|12}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Prevents redsn0w from crashing due to increasing ramdisk sizes.
  +
|-
  +
! 0.9.10b6
  +
| {{date|2012|03|07}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Jailbreaks iOS 5.1 tethered on devices vulnerable to [[limera1n Exploit]].
  +
** Untethered on [[N88AP|iPhone 3GS]] ([[Bootrom 359.3|old bootrom]]).
  +
* Automatically detects MC model [[N72AP|iPod touch (2nd generation)]] with [[User:pod2g|pod2g]]'s steaks4uce exploit.
  +
|-
  +
! 0.9.10b6b
  +
| {{date|2012|03|11}}
  +
| {{yes}}
  +
| {{no}}
  +
|
  +
* Fixes small issues for Mac OS X v10.5.8 and earlier.
  +
|-
  +
! 0.9.10b7
  +
| {{date|2012|04|20}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Implements the Corona A5 jailbreak for iPhone 4S and iPad 2 devices still at 5.0.1
  +
* Can also re-install that jailbreak for those who accidentally uninstalled the untether
  +
* When stitching an IPSW, it can now grab your blobs directly from Cydia.
  +
* Now shows a lot more info about your device, for instance, whether your iPhone 3G has the vulnerable baseband bootloader, or whether your iPhone 3GS has the old exploitable bootrom
  +
|-
  +
! 0.9.10b8
  +
| {{date|2012|04|23}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Can backup those priceless activation tickets many are grabbing today
  +
* Adds ability to backup arbitrary directories or files from your device into a ZIP file on your Mac or PC
  +
|-
  +
! 0.9.10b8b
  +
| {{date|2012|04|23}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Makes the ZIP files compatible with the native Windows Explorer.
  +
|}
  +
  +
===0.9.11 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.11b1
  +
| {{date|2012|05|11}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Newer devices ([[iPad 2]], [[iPad (3rd generation)]], and [[N94AP|iPhone 4S]]) are able downgrade as well. In a radical departure from previous versions of [[redsn0w]], it now directly supports restoring [[IPSW File Format|IPSW]]s to your device.
  +
|-
  +
! 0.9.11b2
  +
| {{date|2012|05|12}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds support for downgrading to [[Telluride 9A406 (iPhone4,1)|iOS 5.0.1 build 9A406]] for the [[N94AP|iPhone 4S]].
  +
|-
  +
! 0.9.11b3
  +
| {{date|2012|05|14}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* This release should fix the "Restore failed" messages people were sometimes getting.
  +
* Behaves better with nearby devices that have Wi-Fi syncing enabled.
  +
|-
  +
! 0.9.11b4
  +
| {{date|2012|05|14}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Completes the tethered jailbreak support for iOS 5.1.1 on A4 devices and earlier, including proper "Stitching" and "Custom" creation of NO_BB [[IPSW File Format|IPSW]]s
  +
|}
  +
  +
  +
===0.9.12 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.12b
  +
| {{date|2012|06|04}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Adds [[Rocky Racoon]] for all devices on iOS 5.1.1.
  +
** On A4 devices and earlier, users can choose between the backup restore method (like [[Absinthe]]) or using a ramdisk-based jailbreak (how redsn0w usually works).
  +
|-
  +
! 0.9.12b2
  +
| {{date|2012|06|08}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Users on iOS 5.1.1 are now explicitly asked if they wish to use the backup/restore method or the DFU ramdisk method for jailbreaking.
  +
* Fixes iBooks problems on the iPhone 3GS (old bootrom).
  +
* Provides more helpful error messages.
  +
|}
  +
  +
===0.9.13 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.13 developer-only 1
  +
| {{date|2012|06|13}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Jailbreaks [[iOS]] 6.0b.
  +
|-
  +
! 0.9.13 developer-only 2
  +
| {{date|2012|06|15}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Fix the various SSH problems and crashes with apps that some have been seeing.
  +
|-
  +
! 0.9.13 developer-only 3
  +
| {{date|2012|07|16}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Covers 6.0b3 release and also adds explicit support for 6.0b2.
  +
|-
  +
! 0.9.13 developer-only 4
  +
| {{date|2012|09|13}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* ???
  +
|}
  +
  +
===0.9.14 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.14b1
  +
| {{date|2012|06|18}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Add a baseband downgrade option in redsn0w for those who are using the iPad’s [[06.15.00]] baseband on the iPhone 3G or iPhone 3GS.
  +
|-
  +
! 0.9.14b2
  +
| {{date|2012|07|04}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Improves the iPad baseband downgrade and should cover anyone who couldn’t downgrade with 0.9.14b1. Also simplified the process and added logging to help diagnose any remaining stubborn iPhones.
  +
|}
  +
  +
===0.9.15 series===
  +
{| class="wikitable"
  +
! Version
  +
! Release date
  +
! OS X-compatible?
  +
! Windows-compatible?
  +
! Changes
  +
|-
  +
! 0.9.15b1
  +
| {{date|2012|10|14}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Tethered jailbreak for iOS 6.0 on the [[K66AP|Apple TV (2nd generation)]], [[N88AP|iPhone 3GS]], [[iPhone 4]], and [[N81AP|iPod touch (4th generation)]].
  +
** Untethered for iPhone 3GS devices with the [[iBoot-359.3|old bootrom]].
  +
* Allows devices with the A5 or newer to restore to iOS 5.x, as long as they have iOS 4.x or 5.x installed.
  +
|-
  +
! 0.9.15b2
  +
| {{date|2012|10|15}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* After restoring an [[N88AP|iPhone 3GS]], redsn0w keeps track of its bootrom version while it's still open.
  +
* Fixes support for upgrading to/downgrading baseband [[06.15.00]].
  +
|-
  +
! 0.9.15b3
  +
| {{date|2012|11|01}}
  +
| {{yes}}
  +
| {{yes}}
  +
|
  +
* Save iPad (4th generation) and iPad Mini SHSH blobs.
  +
* Fixes of error 14 when stitching blobs and error 2601 for windows users when restoring.
 
|}
 
|}
   
 
== Exploits used ==
 
== Exploits used ==
For [[N45ap|iPod touch]], [[M68ap|iPhone]] and [[N82ap|iPhone 3G]], see:
+
For [[M68AP|iPhone]], [[N45AP|iPod touch]], and [[N82AP|iPhone 3G]]:
 
*[[Pwnage]]
 
*[[Pwnage]]
 
*[[Pwnage 2.0]]
 
*[[Pwnage 2.0]]
   
For [[N72ap|iPod touch 2G]], see:
+
For [[N72AP|iPod touch (2nd generation)]]:
 
*[[0x24000 Segment Overflow]]
 
*[[0x24000 Segment Overflow]]
 
*[[ARM7 Go]] - used to upload the oversized [[LLB]] required to utilize the 0x24000 Segment Overflow.
 
*[[ARM7 Go]] - used to upload the oversized [[LLB]] required to utilize the 0x24000 Segment Overflow.
*[[usb_control_msg(0xA1, 1) Exploit]] - used (in redsn0w 0.9.6 beta 1) to upload the oversized [[LLB]] to utilize the 0x24000 Segment Overflow, as well as a [[tethered jailbreak]] on units with the [[iBoot-240.5.1|new bootrom]].
+
*[[usb_control_msg(0xA1, 1) Exploit]] - used (in redsn0w 0.9.6b) to upload the oversized [[LLB]] to utilize the 0x24000 Segment Overflow, as well as a [[tethered jailbreak]] on units with the [[Bootrom 240.5.1|new bootrom]].
   
For [[N88ap|iPhone 3GS]], see:
+
For [[N88AP|iPhone 3GS]]:
 
*[[0x24000 Segment Overflow]]
 
*[[0x24000 Segment Overflow]]
 
*[[iBoot Environment Variable Overflow]] - Exploit has a different implementation from [[User:geohot|geohot]]'s implementation in [[purplera1n]].
 
*[[iBoot Environment Variable Overflow]] - Exploit has a different implementation from [[User:geohot|geohot]]'s implementation in [[purplera1n]].
 
*[[usb_control_msg(0x21, 2) Exploit]]
 
*[[usb_control_msg(0x21, 2) Exploit]]
*limera1n exploit
+
*[[limera1n]] exploit
   
For [[N18ap|iPod touch 3G]]
+
For [[N18AP|iPod touch (3rd generation)]]:
 
*[[usb_control_msg(0x21, 2) Exploit]]
 
*[[usb_control_msg(0x21, 2) Exploit]]
*limera1n exploit
+
*[[limera1n]] exploit
  +
  +
For [[iPhone 4]], [[N81AP|iPod touch (4th generation)]], [[K48AP|iPad]] and [[K66AP|Apple TV (2nd generation)]]:
  +
*[[limera1n]] exploit
  +
  +
For [[K48AP|iPad]], [[iPad 2]], [[iPad (3rd generation)]], [[N88AP|iPhone 3GS]], [[iPhone 4]], [[N94AP|iPhone 4S]], [[N18AP|iPod touch (3rd generation)]] and [[N81AP|iPod touch (4th generation)]]:
  +
* [[Corona]]
  +
* [[Racoon String Format Overflow Exploit]]
  +
* [[ HFS Heap Overflow]]
  +
* [[BackupAgent]]
   
  +
== External Links ==
for [[N90ap|iPhone 4]], [[N81ap|iPod touch 4G]], [[K48ap|iPad]] and [[K66ap|Apple TV 2G]]
 
  +
*[https://sites.google.com/a/iphone-dev.com/files/home/ Official redsn0w download links]
*limera1n exploit
 
  +
* [http://web.archive.org/web/20120112055850/http://thepiratebay.org/user/iphonedev Official iPhone Dev Team torrents]
  +
*[http://blog.iphone-dev.org/tagged/redsn0w iPhone Dev Team blog with redsn0w information]
  +
*[http://blog.iphone-dev.org/redsn0w-iOS5 redsn0w beta infos (outdated)]
   
 
[[Category:Hacking Software]]
 
[[Category:Hacking Software]]
  +
[[Category:Jailbreaking]]
  +
[[Category:Jailbreaks]]

Latest revision as of 10:20, 15 May 2021

redsn0w on OS X

redsn0w is an iDevice jailbreaking tool for OS X and Windows. Originally called QuickPwn, but due to exploitation of the name by www.quickpwn.com, version 0.7 was renamed to redsn0w and added unlocking of supported devices.

Version 0.8 added support for jailbreaking the iPhone 3GS.

Version 0.9b3 was released for Windows and Mac OS X, and it allows iOS 3.0 through 3.1.2 to be jailbroken. It includes support for all devices except the iPod touch (3rd generation), and supports a tethered jailbreak on iPhone 3GS units and iPod touch (2nd generation) units with new bootroms. In addition, this version supports custom boot and recovery mode logos, as well as verbose mode on bootup.

Version 0.9.2 supports jailbreaking of all iDevices (at the time) with iOS 3.0 through 3.1.2 on Windows and Mac OS X, as well as 3.1.3 on S5L8900 devices. Version 0.9.3 adds support of internet tethering IPCC hack on those devices and 0.9.4 allows jailbreaking of early iPod touch (2nd generation) with iOS 3.1.3.

Version 0.9.5b5-5 supports jailbreaking the iPhone 3G and iPod touch (2nd generation) (old bootrom) with iOS 4.0 on Windows and Mac OS X.

Version 0.9.6b6 supports jailbreaking iOS 3.2.2, 4.1, and 4.2.1 for every device that supports those versions (except Apple TV (2nd generation)), on Windows and Mac OS X.

Version 0.9.10b1 adds support for iOS 4.2.6 through 5.0.1 (though iOS 4.2.9, 4.2.10, 4.3.4, 4.3.5, and 5.0 are tethered on devices invulnerable to the 0x24000 Segment Overflow). This build of redsn0w is not capable of jailbreaking S5L8940 or newer devices.

Credit

iPhone Dev Team

Versions

Initial releases

Version Release date OS X-compatible? Windows-compatible? Changes
Lite Unknown Yes Yes
0.3 Unknown Yes Yes

0.7.x series

Version Release date OS X-compatible? Windows-compatible? Changes
0.7 Unknown Yes Yes
  • Untethered jailbreak for all devices but iPhone 3GS
0.7.1 Unknown Yes Yes Bug fixes for versions 0.7
0.7.2 Unknown Yes Yes Bug fixes for versions 0.7

0.8.x series

Version Release date OS X-compatible? Windows-compatible? Changes
0.8 7 July 2009 Yes Yes
  • Performs an untethered jailbreak on iOS 3.0/3.0.1 (when pointed at 3.0) for all devices supported by those firmware.

0.9.0-0.9.4 releases

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.2 Unknown Yes Yes
0.9.3 Unknown Yes Yes
  • Contains the IPCC hack to enable tethering on the iPhone 3G and 3GS.
0.9.4 Unknown Yes Yes

0.9.5 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.5b3 21 Jun 2010 Yes No
0.9.5b4 Unknown Yes No
  • Resolved a problem with iBooks.
0.9.5b5 Unknown Yes No
  • Supposed to fix any APN or MMS issues that users were seeing.

0.9.6 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.6b1 21 September 2010 Yes Yes
0.9.6b2 31 October 2010 Yes Yes
0.9.6b3 21 November 2010 Yes Yes
  • Supports the installation of custom bundles
0.9.6b4 23 November 2010 Yes Yes
0.9.6b5 28 November 2010 Yes Yes
0.9.6b6 1 December 2010 Yes Yes
  • Allows you to "deactivate" a hacktivated phone, so sbingner's Subscriber Artificial Module (SAM) can trick your iPhone and iTunes into creating legitimate activation tickets.
0.9.6 release candidate 7 2 January 2011 Yes Yes
0.9.6 release candidate 8 5 January 2011 Yes Yes
  • Informs users if a boot logo PNG is invalid, and why.
  • Introduced the "-a" command-line argument to eliminate clicking.
0.9.6 release candidate 9 3 April 2011 Yes Yes
  • Adds support for jailbreaking iOS 4.3.1 on all compatible devices except the iPad 2 and Apple TV (2nd generation).
  • New command line parameters k and d [1]:
    • -k --kernelcache=<str> use specified kernelcache (advanced)
    • -d --devicetree=<str> use specified devicetree (advanced)
0.9.6 release candidate 10 7 April 2011 Yes Yes
  • Added boot animations
  • Removed misleading Settings
0.9.6 release candidate 11 7 April 2011 Yes Yes
  • Makes the boot animation a bit more robust
0.9.6 release candidate 12 8 April 2011 Yes Yes
  • Fix any lingering issues with the boot animation
0.9.6 release candidate 13 19 April 2011 Yes Yes
  • Adds support for jailbreaking iOS 4.3.2 on all compatible devices except the iPad 2.
0.9.6 release candidate 14 19 April 2011 Yes Yes
0.9.6 release candidate 15 6 May 2011 Yes Yes
  • Adds support for jailbreaking iOS 4.3.3 on all compatible devices except the iPad 2.
0.9.6 release candidate 16 16 May 2011 Yes Yes
0.9.6 release candidate 17 20 May 2011 Yes Yes
  • Adds advanced command line options for kernel hackers.
0.9.6 release candidate 18 14 June 2011 Yes Yes
0.9.6 release candidate 19 12 July 2011 Yes Yes
  • When a custom bundle is applied, most of the normal jailbreak steps (like stashing and untethering) are skipped.

0.9.7 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.7b1 26 December 2010 Yes No
  • Jailbreaks iOS 4.1-4.2.1 on all compatible devices.
    • Able to achieve an untethered jailbreak on 4.2.1, provided the user has 4.2b3 SHSHs and the 4.2b3 IPSW.
      • This version of "Jailbreak Monte" has quite a number of bugs, particularly app switcher crashes and disabled Bluetooth.
0.9.7b2 26 December 2010 Yes No
  • Fixes crashing bugs on GUI apps.
0.9.7b3 27 December 2010 Yes No
  • Fixes crashing bugs completely.
0.9.7b4 31 December 2010 Yes No
  • usbmuxd integrated.
0.9.7b5 8 January 2011 Yes No
  • Issues related to Bluetooth and the sandbox are resolved.
0.9.7b6 10 January 2011 Yes No
  • fixes Skype

0.9.8 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.8b1 10 June 2011 Yes Yes
  • Performs a tethered jailbreak of iOS 5.0b and 5.0b2 (when pointed at the beta IPSW) on all compatible devices except the iPad 2.
0.9.8b2 11 July 2011 Yes Yes
  • Performs a tethered jailbreak of iOS 5.0b, 5.0b2, and 5.0b3 on all compatible device except the iPad 2.
  • Fixes the iOS 5.0b3 sandbox issues present in the previous version.
0.9.8b3 16 July 2011 Yes Yes
0.9.8b4 23 July 2011 Yes Yes
0.9.8b5 9 August 2011 Yes Yes
0.9.8b6 23 August 2011 Yes Yes
0.9.8b7 31 August 2011 Yes Yes
0.9.8b7b 2 September 2011 Yes Yes
0.9.8b7c 6 September 2011 Yes Yes

0.9.9 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.9b1 19 September 2011 Yes Yes
  • Complete rewrite.
  • No longer requires IPSWs when jailbreaking public builds. When jailbreaking beta/Golden master firmwares, need to specify IPSW once, then auto-recognizes it.
  • Redsn0w now fetches SHSH from device, querys Cydia about saved blobs, stitches IPSWs with SHSH blobs (not for iPhones) and able to submit SHSH to cydia
  • Includes Terminal shell commands into the GUI.
0.9.9b2 4 October 2011 Yes Yes
  • Fixes Verizon iPhone 4 firmware detection
  • Fixes 'Fix Recovery'
  • Fixes for Stitching
  • Fixes for blob processing
0.9.9b3 5 October 2011 Yes Yes
  • Auto-detects the iOS 5.0 GM firmware now.
  • Allows a jailbreak (albeit still tethered apart from iPhone 3GS old bootrom) on iOS5 GM
0.9.9b3a 5 October 2011 No Yes
  • Fixes a Windows-only caching bug
  • Allows Windows users to rename the redsn0w exe to anything containing 'boot' to jump straight to the tethered boot stage on load (thus adding one-click tethered boot to Windows redsn0w)
  • 0.9.9b3 still works fine for Mac users except they don't have the new 'boot' rename feature that this version has
0.9.9b4 12 October 2011 Yes Yes
  • Now auto-recognizes iOS 5 and no longer requires IPSW submission on iOS 5 jailbreak
0.9.9b5 13 October 2011 Yes No
  • Custom IPSW feature (from PwnageTool) for Baseband preservation.
0.9.9b6 18 December 2011 Yes Yes
  • Fixes location services issues for iPhone 3GS with 06.15.00 baseband
0.9.9b7 21 October 2011 Yes Yes
  • You can now choose whether you want redsn0w or Cydia to Stash Applications (can shorten redsn0w session by 60%)
0.9.9b8 3 November 2011 Yes Yes
0.9.9b9 19 December 2011 Yes Yes
0.9.9b9b 19 December 2011 Yes Yes
  • Enables the “Custom” button in Windows to allow baseband preservation.
  • Warns against flashing baseband 06.15.00 on newer iPhone 3GS devices (2011 week 35) more explicitly.
0.9.9b9c 19 December 2011 No Yes
  • Special build for Windows users encountering issues with the update check.
0.9.9b9d 20 December 2011 Yes Yes

0.9.10 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.10b 27 December 2011 Yes Yes
  • The jailbreak for iOS 5.0.1 is now untethered.
0.9.10b2 27 December 2011 Yes Yes
  • Fixes an issue with launchctl that the untether caused.
0.9.10b3 28 December 2011 Yes Yes
  • Fixes a problem where re-running redsn0w over an existing jailbreak would cause Mobile Substrate-based apps to stop running until Mobile Substrate was installed again.
0.9.10b3 novcheck 29 December 2011 No Yes
  •  ?
0.9.10b4 15 January 2012 Yes Yes
  • Includes a fix for iBooks on iOS 5.0.1.
  • Addresses an issue where the launchctl fix didn't work sometimes.
0.9.10b5 29 January 2012 Yes Yes
  • Circumvents jailbreak detection in iBooks that caused ~10% of images to display properly.
0.9.10b5b 1 February 2012 Yes Yes
0.9.10b5c 12 February 2012 Yes Yes
  • Prevents redsn0w from crashing due to increasing ramdisk sizes.
0.9.10b6 7 March 2012 Yes Yes
0.9.10b6b 11 March 2012 Yes No
  • Fixes small issues for Mac OS X v10.5.8 and earlier.
0.9.10b7 20 April 2012 Yes Yes
  • Implements the Corona A5 jailbreak for iPhone 4S and iPad 2 devices still at 5.0.1
  • Can also re-install that jailbreak for those who accidentally uninstalled the untether
  • When stitching an IPSW, it can now grab your blobs directly from Cydia.
  • Now shows a lot more info about your device, for instance, whether your iPhone 3G has the vulnerable baseband bootloader, or whether your iPhone 3GS has the old exploitable bootrom
0.9.10b8 23 April 2012 Yes Yes
  • Can backup those priceless activation tickets many are grabbing today
  • Adds ability to backup arbitrary directories or files from your device into a ZIP file on your Mac or PC
0.9.10b8b 23 April 2012 Yes Yes
  • Makes the ZIP files compatible with the native Windows Explorer.

0.9.11 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.11b1 11 May 2012 Yes Yes
0.9.11b2 12 May 2012 Yes Yes
0.9.11b3 14 May 2012 Yes Yes
  • This release should fix the "Restore failed" messages people were sometimes getting.
  • Behaves better with nearby devices that have Wi-Fi syncing enabled.
0.9.11b4 14 May 2012 Yes Yes
  • Completes the tethered jailbreak support for iOS 5.1.1 on A4 devices and earlier, including proper "Stitching" and "Custom" creation of NO_BB IPSWs


0.9.12 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.12b 4 June 2012 Yes Yes
  • Adds Rocky Racoon for all devices on iOS 5.1.1.
    • On A4 devices and earlier, users can choose between the backup restore method (like Absinthe) or using a ramdisk-based jailbreak (how redsn0w usually works).
0.9.12b2 8 June 2012 Yes Yes
  • Users on iOS 5.1.1 are now explicitly asked if they wish to use the backup/restore method or the DFU ramdisk method for jailbreaking.
  • Fixes iBooks problems on the iPhone 3GS (old bootrom).
  • Provides more helpful error messages.

0.9.13 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.13 developer-only 1 13 June 2012 Yes Yes
  • Jailbreaks iOS 6.0b.
0.9.13 developer-only 2 15 June 2012 Yes Yes
  • Fix the various SSH problems and crashes with apps that some have been seeing.
0.9.13 developer-only 3 16 July 2012 Yes Yes
  • Covers 6.0b3 release and also adds explicit support for 6.0b2.
0.9.13 developer-only 4 13 September 2012 Yes Yes
  •  ???

0.9.14 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.14b1 18 June 2012 Yes Yes
  • Add a baseband downgrade option in redsn0w for those who are using the iPad’s 06.15.00 baseband on the iPhone 3G or iPhone 3GS.
0.9.14b2 4 July 2012 Yes Yes
  • Improves the iPad baseband downgrade and should cover anyone who couldn’t downgrade with 0.9.14b1. Also simplified the process and added logging to help diagnose any remaining stubborn iPhones.

0.9.15 series

Version Release date OS X-compatible? Windows-compatible? Changes
0.9.15b1 14 October 2012 Yes Yes
0.9.15b2 15 October 2012 Yes Yes
  • After restoring an iPhone 3GS, redsn0w keeps track of its bootrom version while it's still open.
  • Fixes support for upgrading to/downgrading baseband 06.15.00.
0.9.15b3 1 November 2012 Yes Yes
  • Save iPad (4th generation) and iPad Mini SHSH blobs.
  • Fixes of error 14 when stitching blobs and error 2601 for windows users when restoring.

Exploits used

For iPhone, iPod touch, and iPhone 3G:

For iPod touch (2nd generation):

For iPhone 3GS:

For iPod touch (3rd generation):

For iPhone 4, iPod touch (4th generation), iPad and Apple TV (2nd generation):

For iPad, iPad 2, iPad (3rd generation), iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and iPod touch (4th generation):

External Links