Apple has rolled out Java for Mac OS X 10.6 Update 3 and Java for Mac OS X 10.5 Update 8, addressing several security issues in the Sun Microsystems-developed platform.
Apple has released a pair of updates for running Java on Mac OS X 10.3 and 10.4 and also changed the way Macs handle US Daylight Savings Time. On Tuesday morning Apple revealed that some of its computers had been infiltrated, perhaps by the same Chinese hackers who had also attacked Facebook, in. The Apple-issued 'Java for Mac OS X v10.6 Update 13' aimed at OS X Snow Leopard included patches for the same 30 vulnerabilities in Java 6 that were addressed in a special Feb. 1 update, as well. Download Java for OS X directly from Oracle. Get the latest version If an app or webpage you want to use asks you to install Java software, you can download the current version of Java for OS X directly from Oracle's website.
“Java for Mac OS X 10.6 Update 3 delivers improved compatibility, security, and reliability by updating Java SE 6 to 1.6.0_22,” Apple says.
On the Leopard side, “Java for Mac OS X 10.5 Update 8 delivers improved compatibility, security, and reliability by updating J2SE 5.0 to 1.5.0_26, and updating Java SE 6 to 1.6.0_22 for 64-bit capable Intel-based Macs.”
Apple notes that “J2SE 1.4.2 is no longer being updated to fix bugs or security issues and remains disabled by default in this update.”
A couple of Support documents are offered to explain exactly what security flaws the two updates address.
Affecting both the Client and the Server editions of Mac OS X 10.6.4, multiple vulnerabilities exist in Java 1.6.0_20, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.
According to Apple, “Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.”
Java for Mac OS X 10.6 Update 3 addresses these issues by updating to Java version 1.6.0_22.
Dual boot macos and ubuntu. Both of the boot managers available to use can handle the dual-booting process; they can even handle more than two OSes, but the Mac's boot manager won’t recognize the Ubuntu OS without a bit of fiddling, and the GRUB boot manager isn't particularly easy to use.
Apple also signals that a command injection issue exists in updateSharingD's handling of Mach RPC messages.
Because of this, “a local user may be able to execute arbitrary code with the privileges of another user who runs a Java application.”
To address this, Apple implemented a per-user Java shared archive, after being notified of this problem by a person identified as Dino Dai Zovi.
Apple Java Update Version
Additionally, the Mac maker notes that this particular issue only affects the Mac OS X implementation of Java.
Softpedia will have a closer look at al the vulnerabilities addressed in Java for Mac OS X in a separate article.
Apple Mac Java Update
By Santhosh Reddy WILLY :
Apple today released Java 2 Platform Standard Edition (J2SE) 5.0 Release 3 which includes version 1.5.0_05 and improves functionality of J2SE 5.0 on Mac OS X v 10.4 Tiger 10.4.2 and later. This release does not replace the existing installation of J2SE 1.4.2.
Java 2 Platform, Standard Edition (J2SE) 5.0 Release 3 allows applications and applets developed for the J2SE 5.0 platform to run on Mac OS X v 10.4.2 and later. It is available via Software Update or as a standalone installer.
Apple Java Update
This update does not change the default version of Java on your Mac from Java 1.4.2 to J2SE 5.0, though Java applications that require J2SE 5.0 may specifically request it. You can change the preferred Java version for applications and applets by using the new Java Preferences utility. This utility is installed by the J2SE 5.0 update here: /Applications/Utilities/Java/J2SE 5.0/
Installing J2SE 5.0 Release 3
1. Get the J2SE 5.0 Update here.
2. Double-click the “J2SE50Release3.dmg” disk image file that you downloaded, and it will mount to appear as a disk in the Finder.
3. Open the mounted disk, then double-click the Installer icon.
4. Follow the onscreen instructions to complete the installation.
More info and download link (42MB) here.