Often times in the hacking world, exploits are found and sold for large sums of money to either a security company or the OS developer themselves. Bug bounties have been quite prevalent in recent years, with companies such as Apple and Google launching their own bug bounty programs. If you've got the security researcher know-how, it's a pretty lucrative business for the lucky few who can do it.
The downside is many of these exploits, once sold, or disclosed and patched, never make it to a jailbreak. This should come as no surprise to anyone in the jailbreaking scene in recent years.
An example of this is Richard Zhu's discovery of a couple bugs that can be used to escape the Safari.app sandbox, and then allow for code execution on the device. These are some pretty serious flaws, especially with using Safari as an attack vector, it's often better that these aren't publicly used for security purposes.
Zhu's vulnerability discoveries netted him a cool $20,000 and an immediate disclosure to Apple who will patch the issues in a future iOS update.
The hope though is that these bugs could lead the way for other flaws to be discovered in iOS 11, perhaps allowing for a future jailbreak. No one knows for certain when an iOS 11 jailbreak will be released, and only time can tell, but with how quickly these exploits were discovered and announced, it's possible that it could come sooner than we thought. These aren't all of the puzzle pieces needed for a jailbreak, but they're certainly a step in the right direction. It's unlikely these vulnerabilities will be publicly posted, however, so we'll have to wait and see what happens on the jailbreaking front.
Would you sell iOS exploits if you found them? What do you think of this? Let us know in the comments section below.