Affiliate Disclosure
If you buy through our links, we may get a commission. Read our ethics policy.

Apple pushes out Java security update

AppleInsider Staff |

Last updated

Apple has released a security update to plug a number of holes that allowed malicious software to run on a user's Mac outside of the Java sandbox.

The Tuesday update for OS X Lion and Mac OS X 10.6 is said to fix "multiple vulnerabilities in Java 1.6.0_29" that could allow a piece of code to be run just by visiting an offending webpage.

From Apple's support page document:

Description: Multiple vulnerabilities exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_31. Further information is available via the Java website at http://www.oracle.com/technetwork/java/javase/releasenotes-136954.html

The OS X Lion version of the update weighs in at 66.9MB and the Mac OS X 10.6 download comes in at 79.7MB. Both can be downloaded through Apple's support pages or via Software Update.

21 Comments

bluefish86 14 Years · 115 comments
About

IMO this took waaay too long. Guess this is why Apple stopped bundling Java...

wizard69 21 Years · 13358 comments
About

Quote:
Originally Posted by bluefish86

IMO this took waaay too long. Guess this is why Apple stopped bundling Java...

This might make sense if Apple responded to very vulnerability for every library included with Mac OS quickly. But they don't often leaving open significant vulnerabilities for a very long time.

macky the macky 15 Years · 4801 comments
About

I wonder when Android will get this update, given that nearly none of the devices run the current OS version.

gatorguy 13 Years · 24627 comments
About

Quote:
Originally Posted by Macky the Macky

I wonder when Android will get this update, given that nearly none of the devices run the current OS version.

That particular Java issue doesn't apply to Android, nor iOS for that matter AFAIK. I find no mention of it.

lukevaxhacker 20 Years · 112 comments
About

Quote:
Originally Posted by Gatorguy

That particular Java issue doesn't apply to Android, nor iOS for that matter AFAIK. I find no mention of it.

The Windows version of Java got this update several weeks ago, could be a month. I suspect the vulnerabilities were over there, too, but the press kept silent about them. Only when things pop up on the Apple side will they generate enough page views to make doing the story worthwhile.

Read More on our Forums ->
 

Sponsored Content

article thumbnail

How to stop spam calls and reclaim some sanity on your iPhone

Top Stories

article thumbnail

How Apple's smart home revolution begins in 2025

article thumbnail

AirPods Max four years later: a missed spatial computing opportunity

article thumbnail

Apple says EU interoperability laws pose severe privacy risks

article thumbnail

Don't believe what you see on TikTok - AirDrop doesn't allow thieves to steal your credit card info

article thumbnail

Holiday 2024 MacBook Buyer's Guide — Which Mac laptop you should buy?

article thumbnail

Holiday coupon: save up to $300 on every 14" & 16" MacBook Pro M4