Apple has released another new version of its iOS operating system for iPhones and other devices that fixes a security vulnerability in the way that the software handled SSL certificates and validated their authenticity. An attacker exploiting the bug might be able to intercept SSL traffic, Apple warned. The new iPhone software comes just five days after Apple released iOS 4.3.4, which was mainly a fix for the PDF jailbreak bug that a security researcher had discovered and used to help users jailbreak their devices. The update applies to iPhone 3GS, the iPhone 4 on GSM networks, the iPad and the iPod Touch.
Source: https://threatpost.com/apple-fixes-ssl-man-middle-bug-ios-435-072511/75470/