Apple Releases Second Update to Java in Two Days

by

Apple has released its second update in two days to the OS X implementation of Java. The first update closed a vulnerability that has led to the infection of more than 600,000 Macs via a trojan horse. The infections have received increased media attention in the past day, including a splashed headline on the Drudge Report.

javaupdate
While yesterday's Java for OS X Lion 2012-001 update closed the vulnerability in Java 1.6.0_29, there's no indication what the new update -- called Java for OS X 2012-002 -- fixes. The update notes link to the same support document as update 2012-001.

Last year, Apple introduced a security update to OS X that would automatically remove malicious software from OS X installations. It isn't clear if the infected machines can be fixed via the internal OS X security mechanisms.

In OS X Mountain Lion, the next version of the OS X software that will be released this summer, Apple will include a feature called Gatekeeper. The new system relies not only on Mac App Store distribution as means of vetting apps, but also on a new "identified developer" program under which developers distributing their applications outside of the Mac App Store can register with Apple and receive a personalized certificate they can use to sign their applications. Apple can then use that system to track developers and disable their certificates if malicious activity is detected.

Popular Stories

iPhone Top Left Hole Punch Face ID Feature Purple

iPhone 18 Pro Launching Later This Year With These 12 New Features

Thursday January 15, 2026 10:56 am PST by
While the iPhone 18 Pro and iPhone 18 Pro Max are not expected to launch for another eight months, there are already plenty of rumors about the devices. Below, we have recapped 12 features rumored for the iPhone 18 Pro models, as of January 2026: The same overall design is expected, with 6.3-inch and 6.9-inch display sizes, and a "plateau" housing three rear cameras Under-screen Face ID...
Read Full Article73 comments
Apple MacBook Pro M4 hero

These 5 Apple Products Will Reportedly Be Upgraded With OLED Displays

Friday January 16, 2026 7:07 pm PST by
Apple plans to upgrade the iPad mini, MacBook Pro, iPad Air, iMac, and MacBook Air with OLED displays between 2026 and 2028, according to DigiTimes. Bloomberg's Mark Gurman previously reported that the iPad mini and MacBook Pro will receive an OLED display as early as this year, but he does not expect the MacBook Air to adopt the technology until 2028 at the earliest. A new iPad Air is...
Read Full Article77 comments
2024 iPhone Boxes Feature

Apple Adjusts Trade-In Values for iPhones, Macs, and More

Thursday January 15, 2026 11:19 am PST by
Apple today updated its trade-in values for select iPhone, iPad, Mac, and Apple Watch models. Trade-ins can be completed on Apple's website, or at an Apple Store. The charts below provide an overview of Apple's current and previous trade-in values in the United States, according to the company's website. Most of the values declined slightly, but some of the Mac values increased. iPhone ...
Read Full Article54 comments
Apple Wallet ID Illinois

Apple Plans to Expand iPhone Driver's Licenses to These 7 U.S. States

Friday January 16, 2026 12:12 pm PST by
In select U.S. states, residents can add their driver's license or state ID to the Apple Wallet app on the iPhone and Apple Watch, and then use it to display proof of identity or age at select airports and businesses, and in select apps. The feature is currently available in 13 U.S. states and Puerto Rico, and it is expected to launch in at least seven more in the future. To set up the...
Read Full Article
iOS 27 Mock Quick

iOS 27 Will Add These 8 New Features to Your iPhone

Sunday January 18, 2026 3:51 pm PST by
iOS 27 is still many months away, but there are already plenty of rumors about new features that will be included in the software update. The first beta of iOS 27 will be released during WWDC 2026 in June, and the update should be released to all users with a compatible iPhone in September. Bloomberg's Mark Gurman said that iOS 27 will be similar to Mac OS X Snow Leopard, in the sense...
Read Full Article81 comments

Top Rated Comments

Dragado Avatar
Dragado
180 months ago
It's also Friday the 6th right now.
Does this mean the world's going to end again? I don't think I can take another world ending; I may die of laughter.

Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.
By the way, laws of computing 101: The OK button agrees to something, the Cancel/close window button disagrees. If you click OK, know what you're saying OK to.

EDIT: In other words, stop using it to close windows.
Score: 16 Votes (Like | Disagree)
fel10 Avatar
fel10
180 months ago
66.6 :eek:

Score: 9 Votes (Like | Disagree)
MonkeySee.... Avatar
MonkeySee....
180 months ago
I love how these "professionals" are calling it a virus :rolleyes:
Score: 8 Votes (Like | Disagree)
MarkMS Avatar
MarkMS
180 months ago
Straight from Apple's Java mailing list. Just an issue with Xcode and App Loader in OS X Lion. Snow Leopard users don't need the tiny update.

Java developers,

Today we re-shipped our Java 1.6.0_31 for OS X Lion today to address a critical issue we found in Xcode and the Application Loader tool. This new "Java for OS X 2012-002" package is effectively identical to "Java for OS X 2012-001", with the exception of a few symlinks and version numbers.

For the sake of expediency, we have re-rolled the automatic update as our standard full combo updater, with the hope that most users have not yet been presented with 2012-001. We considered creating a delta update for users who already installed 001, but that would have made the process of getting these fixes to you take longer.

We apologize for the inconvenience, and would like to offer our thanks to the developers who caught this issue and reported it to us as quickly as they did. This issue only impacts Lion users, so Snow Leopard users have nothing to reinstall.

Over the next few days, we will catch up with producing updated release notes, tech notes, and developer packages with the revised 002 version numbers.

Manual download links:
Java for OS X 2012-002: <http://support.apple.com/kb/DL1515>
Java for Mac OS X 10.6 Update 7: <http://support.apple.com/kb/DL1516>
Score: 7 Votes (Like | Disagree)
Jabman Avatar
Jabman
180 months ago
Hey if it's broken fix it.:cool:
Score: 7 Votes (Like | Disagree)
Morod Avatar
Morod
180 months ago
Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.

To find out if you're infected, do this:


Originally Posted by Sirolway
What's the easiest way to determine if you're infected?...


In terminal run:
Quote:
defaults read /Applications/Safari.app/Contents/Info LSEnvironment
You should get this error:
Quote:
The domain/default pair of (/Applications/Safari.app/Contents/Info, LSEnvironment) does not exist
Then run:
Quote:
defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES
You should get this error:
Quote:
The domain/default pair of (/Users/YOURUSER/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist


You can copy and paste the two commands into Terminal. To open Terminal, go to Finder>Applications>Utilities>Terminal. Double click on Terminal. Hit enter after each command.
Just be careful when using Terminal. It's one of the few places where you can really mess up your computer.
Score: 6 Votes (Like | Disagree)
Read All Comments