iOS 8.1 - Could not start com.apple.mobile.installation_proxy!

Probably related:
https://github.com/libimobiledevice/ideviceinstaller/issues/11

Status changed to 'Confirmed' because the bug affects multiple users.

I have build libimobiledevice5 1.1.7 from Debian experimental. I wasn't able to build usbmuxd 1.1.0 because of dependency problems, however. With only libimobiledevice-1.1.7 I still get the same error, so I guess both libimobiledevice and usbmuxd need an update.
On a current Archlinux installation with libimobiledevice-1.1.7 and usbmuxd-1.1.0 things work as expected and I can access the installed applications on my iPhone (currently iOS 8.1.2).
Both packages seem to be stuck in experimental, so I don't know if it's possible to backport them right now.

same here, ios 8.1.2

Could not start com.apple.mobile.installation_proxy!

same here, iOS 8.3

This problem is fixed by updating ideviceinstaller to version 1.1.0. The version available in Ubuntu Software Center is 1.0.1-0.2. Note that you need to upgrade the whole stack because of library dependencies and protocol mismatch (ideviceinstaller 1.1.0 cannot talk to usbmuxd 1.0.8).

Also note that you cannot just remove the outdated package libmobiledevice4 because both ubuntu-session and software-center depend on it, so you will not be able to log in to the desktop or reinstall software-center.

I installed ideviceinstaller 1.2.0, from http://www.libimobiledevice.org
but same error,

Could not start com.apple.mobile.installation_proxy!

Status changed to 'Confirmed' because the bug affects multiple users.

This happens even after installing the 1.2 backport from https://launchpad.net/~martin-salbaba/+archive/ubuntu/ppa+libimobiledevice. iOS 8.3.

Happens to me with iOS 9.2

Also seeing this with latest iOS

This bug was fixed in the package libimobiledevice - 1.2.0+dfsg-3~ubuntu1

---------------
libimobiledevice (1.2.0+dfsg-3~ubuntu1) yakkety; urgency=medium

  * debian/patches/git_gnutls_proxy.patch:
    - Fix installation_proxy when using GnuTLS instead of OpenSSL
      (lp: #1388743)
  * debian/patches/git_local_socket.patch:
    - [security fix] Make sure sockets only listen locally

 -- Sebastien Bacher <email address hidden> Mon, 23 May 2016 12:48:38 +0200

There is no bug/test case/etc. about the second "listen to local only" patch. Should this go via -security instead? Subscribing security team.

This probably should go through the security pocket.

https://github.com/libimobiledevice/libimobiledevice/commit/df1f5c4d70d0c19ad40072f5246ca457e7f9849e

Does anyone know if there's already a CVE assigned for this issue?

Thanks

@Seth, I don't think there is. Note that libusbmuxd has a similar issue/fix upstream

https://github.com/libimobiledevice/libusbmuxd/commit/4397b3376dc4e4cb1c991d0aed61ce6482614196

CVE-2016-5104 was assigned for this issue:
http://www.openwall.com/lists/oss-security/2016/05/26/6

Thanks

Hello Sebastian, or anyone else affected,

Accepted libimobiledevice into xenial-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/libimobiledevice/1.2.0+dfsg-3~ubuntu0.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Could someone please test the version in xenial-proposed so I can release it as a security update? Thanks!

How can I test it from xenial-proposed, while I use Ubuntu 15.10 ?
I can test it, if you tell in brief, how to do..

the SRU is for 16.04 not 15.10 but the binaries might be installable there...

Marc, I don't have device to test but it was not working before and there is no visible regressions on things using the library so I would consider it as good enough to copy

I think libusbmuxd is also affected. Debian and yakkety now has libusbmuxd 1.0.10-3 to close CVE-2016-5104.

Please nominate libusbmuxd for Xenial.

I installed from source, https://launchpad.net/ubuntu/+archive/primary/+files/libimobiledevice_1.2.0+dfsg.orig.tar.bz2
by,
./configure
make
sudo make install

the compile & install was successfull.

Same error occured for an ipad.

Could not start com.apple.mobile.installation_proxy!

I installed on Ubuntu 15.10

unsure if that fixes the issue but it is shipped upstream/in other distributions, has been tested there and doesn't create regressions in ubuntu so let's set it as verified

I meant, I installed from source, in Ubuntu 15.10, but the problem still was the same.

Same error occured for an ipad.
Could not start com.apple.mobile.installation_proxy!

This bug was fixed in the package libimobiledevice - 1.2.0+dfsg-3~ubuntu0.1

---------------
libimobiledevice (1.2.0+dfsg-3~ubuntu0.1) xenial; urgency=medium

  * debian/patches/git_gnutls_proxy.patch:
    - Fix installation_proxy when using GnuTLS instead of OpenSSL
      (lp: #1388743)
  * debian/patches/git_local_socket.patch:
    - [security fix] Make sure sockets only listen locally

 -- Sebastien Bacher <email address hidden> Mon, 23 May 2016 12:48:38 +0200

The verification of the Stable Release Update for libimobiledevice has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

libusbmuxd was updated: http://www.ubuntu.com/usn/usn-3026-2/