Apple Reissuing Numerous iOS App Updates, Potentially Related to Recent ‘This App is No Longer Being Shared’ Bug

Over the past few hours, a number of MacRumors readers have reported seeing dozens or even hundreds of pending app updates showing in the App Store on their iOS devices, including for many apps that were already recently updated by the users. In many cases, the dates listed on these new app updates extend back as far as ten days.


Apple has not shared any information as to why updates for these already up-to-date apps are being reissued, but some users suspect it may be related to the recent “This app is no longer shared with you” issue that was preventing some users from launching certain apps unless they are offloaded or deleted and then reinstalled.

It’s possible there was an issue with an expired certificate or other credential related to app sharing, and Apple has had to reissue these updates to include a valid certificate on each of the affected apps in order to fix the issue.

So if you’re seeing an unusual number of app updates available in the ‌App Store‌, you’re not alone.

Temp Mails (https://tempemail.co/) is a new free temporary email addresses service. This service provide you random 10 minutes emails addresses. It is also known by names like: temporary mail, disposable mail, throwaway email, one time mail, anonymous email address… All emails received by Tempmail servers are displayed automatically in your online browser inbox.

iOS Bug Preventing Some Apps From Opening With ‘This App is No Longer Shared’ Message

An app bug is causing some iOS users to be unable to open their apps, with affected iPhone and iPad users seeing the message “This app is no longer shared with you” when attempting to access an app.


There are multiple complaints about the issue on the MacRumors forums and on Twitter from users who are running into problems. A MacRumors reader describes the issue:

Is anyone else experiencing widespread app crashes? I am suddenly being informed that “this app is no longer shared with you” from several iOS apps. When I follow the prompt to the app’s App Store page, the only option is to “open” which then just puts me back into the same loop.

Dozens of Twitter complaints suggest the issue is affecting people running both iOS 13.4.1 and iOS 13.5, and it’s not clear what’s causing the problem as not everyone appears to be affected. Some users have had the problem occur after updating apps in the last day.

There have been complaints about many apps including YouTube, Twitter, WhatsApp, Facebook, TikTok, LastPass, and more. We updated the WhatsApp app an ‌iPhone‌ on iOS 13.5 prior to writing this article and immediately got the error message.

People impacted by the issue have been able to fix their apps by deleting the app that’s not working and reinstalling it. Offloading the app rather than deleting it may also work to fix the problem.

Temp Mails (https://tempemail.co/) is a new free temporary email addresses service. This service provide you random 10 minutes emails addresses. It is also known by names like: temporary mail, disposable mail, throwaway email, one time mail, anonymous email address… All emails received by Tempmail servers are displayed automatically in your online browser inbox.

Spotify Gains New ‘Group Session’ Feature With Shared Listening Queue

Spotify today introduced a new feature called Group Session, which is designed to allow two or more Premium users in the same location to share control over the music that’s bring played.


Akin to a sort of party mode, Group Session lets participants select what’s being played in real time along with contributing to a collaborative playlist.

Many people are sheltering in place right now and are stuck at home, and Spotify told TechCrunch that this feature is ideal for groups spending long hours together.

Group Session can be used after the person in charge taps the Connect menu in the bottom left corner of the Play screen, sharing the scannable QR code with additional users. Participants can each scan the host’s code with the Spotify app, and then with Spotify’s controls, they can play, pause, skip, and select tracks to add to the queue.

Spotify already offers a feature for building collaborative playlists with friends, but this new option is designed for collaboration in real-time when people are gathered together. It supports up to 100 users.

Group Session is rolling out around the world for all Spotify Premium users as of today, but it is still being made available in a beta capacity, so Spotify plans to continue refining and tweaking it based on user feedback.

Top Stories

Apple Faces Class Action Lawsuit Over ‘Flexgate’ Issue With MacBook Pro Displays

A nationwide class action lawsuit filed against Apple in Northern California court this week accuses the company of knowingly concealing a defect with a display-related flex cable on recent 13-inch and 15-inch MacBook Pro models.
As discovered by repair website iFixit last year, some MacBook Pro models released in 2016 and 2017 have experienced issues with uneven backlighting caused by a…

Rumor Suggests New Apple TV 4K With A12X Chip is ‘Ready to Ship’

Multiple rumors have indicated that Apple is working on a refreshed version of the Apple TV, and today, leaker Jon Prosser said that an updated 4K Apple TV model is “ready to ship.”
According to Prosser, the Apple TV 4K will feature an A12X chip and 64 or 128GB storage options. The new Apple TV 4K could “drop any time,” but Prosser does not know details on a specific launch date.
Signs of …

Apple Updates AirPods Pro Firmware to Version 2D15

Apple today released a new firmware update for the AirPods Pro, upgrading the previous firmware, version 2C54 or 2B588, to the new firmware, 2D15.
There is no word on what’s new in the refreshed firmware at this time, though there have been some complaints from AirPods Pro users about Active Noise Cancellation issues with the prior firmware.
There’s no clear cut way to upgrade the…

Deals: Apple Watch Series 5 Models Discounted by Up to $100 on Amazon

Amazon is taking up to $100 off the Apple Watch Series 5 this week, with prices starting at $299.99 for the 40mm GPS models. Only the Gold Aluminum Case with Pink Sport Band is available at this price. If you order today, the Apple Watch should arrive sometime next week.
Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small…

Top Stories: New 13″ MacBook Pro, WWDC Starts June 22, AirPods Pro Firmware Update, and More

This week saw a couple of big announcements, led by the launch of an update for the 13-inch MacBook Pro line. Most notably, the update brought the improved Magic Keyboard previously introduced on its 16-inch sibling and the MacBook Air, with high-end models also receiving updated processors.
Subscribe to the MacRumors YouTube channel for more videos. The second significant announcement this…

Rumor Claims watchOS 7 Will Have ‘Mental Health Capabilities’ to Detect Panic Attacks

Apple’s next-generation Apple Watch and watchOS 7 will focus on new mental health capabilities, according to leaker Jon Prosser who recently spoke on the Geared Up podcast. The mention of new Apple Watch features comes towards the end of the podcast.
The next-generation version of the Apple Watch, the Apple Watch Series 6, has been rumored to include a blood oxygen sensor, which Prosser says …

An X-Ray View of Apple’s Magic Keyboard for iPad Pro

iFixit hasn’t yet done a full teardown of the new Magic Keyboard designed for the new iPad Pro models, but the repair site today partnered with x-ray company Creative Electron to create Magic Keyboard x-rays that give us a view of just what’s inside.
The Magic Keyboard uses scissor switch keys instead of butterfly keys, which have now been effectively eliminated from Apple’s product lineup….

Apple’s Plan to Introduce New AirPods Later This Year Reportedly Delayed

Apple’s plan to release an updated version of AirPods later this year has been delayed due to the global health crisis, according to the Nikkei Asian Review.
This lines up with a recent report from analyst Ming-Chi Kuo, who said that mass production of third-generation AirPods will begin in the first half of 2021, followed by mass production of second-generation AirPods Pro between the…

iPhone 12 Pro Rumored to Feature 120Hz ProMotion Display, 3x Camera Zoom, and Improved Face ID

iPhone 12 Pro may contain a 120Hz ProMotion Display, a 3x rear camera zoom, and improved Face ID, according to unreliable leaker Max Weinbach, who shared his information with YouTube channel EverythingApplePro.
Weinbach suggests that iPhone 12 Pro, rumored to come in 6.1-inch and 6.7-inch sizes, will feature a high refresh-rate 120Hz ProMotion display, as currently seen on iPad Pro. The new…

Temp Mails (https://tempemail.co/) is a new free temporary email addresses service. This service provide you random 10 minutes emails addresses. It is also known by names like: temporary mail, disposable mail, throwaway email, one time mail, anonymous email address… All emails received by Tempmail servers are displayed automatically in your online browser inbox.

ACME TLS-SNI-01 shared hosting exploit using Let’s Encrypt – 10 minute mail

On Tuesday, January 9, Disposable mail’s security advisor Frans Rosén discovered and reported a security issue in in TLS-SNI-01 validation in Let’s Encrypt. Exploiting the issue could allow an attacker to issue certificates for any domain, regardless of whether they own the domain or not. Following Frans’ report, Let’s Encrypt disabled TLS-SNI-01 validation and recommends using HTTP-01 or DNS-01 validation methods instead.

If you’d like to read Frans Rosén’s technical write-up, head over to our Labs blog.

What can happen?

You have probably come across the green lock together with the word “Secure” in the top left corner of your browser. The lock is displayed when you are browsing securely, using the SSL/TLS protocol that prevents hackers from intercepting your data.

Certificate in browser

An SSL/TLS certificate encrypts the information sent over your connection and authenticates the identity of the certificate’s holder. This means that websites with a certificate are often considered reliable and more secure than websites without a certificate, served over http. Certificates are issued by Certificate authorities (CAs) like Let’s Encrypt.

However, if an attacker were to exploit the TLS-SNI-01 validation, they could issue a certificate for any website. As the site would seemingly be protected with an SSL/TLS certificate, its visitors would consider it secure while the attacker could intercept traffic and sensitive information.

How the TLS-SNI-01 challenge works

When issuing certificates, Let’s Encrypt uses ACME’s TLS-SNI-01 challenge to validate the domain. First, the ACME server generates a random token and sends it to the client. The client then uses the token to create a self-signed certificate with a hostname that looks like xyz.abc.acme.invalid. The cloud provider checks that domain’s IP address and, if the self-signed certificate matches the hostname, a Let’s Encrypt certificate is issued.

Why is this an issue?

In short, TLS-SNI-01 validation can be exploited when domain ownership is not validated and multiple users are hosted on the same IP address. At the time of Frans’ report to Let’s Encrypt, this is was the case with a large number of major cloud providers. AWS CloudFront and Heroku quickly implemented the patch and no longer allow customers to add domains that end with .invalid.

  1. Domain ownership is not validated

Many major cloud providers do not validate domain ownership, but instead simply allow you to add any domain to them. This makes it possible for an attacker to try find orphaned domains still pointing to the service and claim them without actually owning any of the domains. In this case, it also meant that you could add xyz.abc.acme.invalid and upload a self-signed certificate, and that would then work according to the validation method.

  1.  Multiple users are hosted on the same IP address

TLS-SNI-01 validation is vulnerable when cloud providers offering shared hosting services host many users on the same IP address, in combination with not having a proper domain validation.

What happens now?

Let’s Encrypt acted quickly and disabled TLS-SNI-01 validation. Since then, TLS-SNI-01 validation has only been re-enabled for large providers that are not vulnerable to the exploit. For new accounts, TLS-SNI-01 remains disabled by default. Despite re-enabling the validation method for major providers, Let’s Encrypt recommend users to switch to HTTPS or DNS validation. On Friday the 12th, Let’s Encrypt announced that they will sunset both TLS-SNI-01 and TLS-SNI-02 completely. They will discuss this further with the IETF ACME working group to make sure a proper specification takes this issue into account.

Additional reading

Frans Rosén’s write-up on Disposable mail Labs

Let’s Encrypt’s incident summary (2018-01-09)

Let’s Encrypt’s update (2018-01-11)

Temp Mails (https://tempemail.co/) is a new free temporary email addresses service. This service provide you random 10 minutes emails addresses. It is also known by names like: temporary mail, disposable mail, throwaway email, one time mail, anonymous email address… All emails received by Tempmail servers are displayed automatically in your online browser inbox.