Apple Updates Java for Lion and Snow Leopard in Sync with Oracle

by

Java Web 165Apple yesterday released a pair of software updates for Java, issuing versions for both Lion and Snow Leopard. The update in part builds upon an earlier Java update for Lion that disabled automatic execution of Java applets in an attempt to minimize the impact of Java-based malware threats like Flashback.

This update configures web browsers to not automatically run Java applets. Java applets may be re-enabled by clicking the region labeled "Inactive plug-in" on a web page. If no applets have been run for an extended period of time, the Java web plug-in will deactivate.

As noted by Krebs on Security, the release is notable because it came on the same day that Oracle released updates for Java on other platforms. Apple has long been criticized for lagging on Java updates, a policy which allowed the Flashback malware to flourish as Mac systems remained unprotected against the threat even though Oracle had patched the vulnerability on other systems several months before.

The update Oracle released yesterday, Java 6 Update 33 and Java 7 Update 5, fixes at least 14 security flaws in the oft-attacked software that is installed on more than three billion devices worldwide. Apple’s Java update brings Java on the Mac to 1.6.0_33, and patches 11 of the 14 security vulnerabilities that Oracle fixed in Tuesday’s release. It’s unclear whether those other three flaws simply don’t exist in the Mac version of Java, but we’ll take progress where we can get it.

With Java SE 7 set to come to the Mac later this year, control over updates is transitioning from Apple to the OpenJDK project, with both Apple and Oracle providing expertise to ensure that updates for Mac roll out on a timely basis. That transition was begun back in late 2010, with Steve Jobs noting at the time that having Apple responsible for Java updates on the Mac "may not be the best way to do it."

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Production Will Reportedly Begin Ramping Up in October

Tuesday July 23, 2024 2:00 pm PDT by
Following nearly two years of rumors about a fourth-generation iPhone SE, The Information today reported that Apple suppliers are finally planning to begin ramping up mass production of the device in October of this year. If accurate, that timeframe would mean that the next iPhone SE would not be announced alongside the iPhone 16 series in September, as expected. Instead, the report...
Read Full Article68 comments
iPhone 17 Plus Feature

iPhone 17 Lineup Specs Detail Display Upgrade and New High-End Model

Monday July 22, 2024 4:33 am PDT by
Key details about the overall specifications of the iPhone 17 lineup have been shared by the leaker known as "Ice Universe," clarifying several important aspects of next year's devices. Reports in recent months have converged in agreement that Apple will discontinue the "Plus" iPhone model in 2025 while introducing an all-new iPhone 17 "Slim" model as an even more high-end option sitting...
Read Full Article160 comments
Generic iPhone 17 Feature With Full Width Dynamic Island

Kuo: Ultra-Thin iPhone 17 to Feature A19 Chip, Single Rear Camera, Semi-Titanium Frame, and More

Wednesday July 24, 2024 9:06 am PDT by
Apple supply chain analyst Ming-Chi Kuo today shared alleged specifications for a new ultra-thin iPhone 17 model rumored to launch next year. Kuo expects the device to be equipped with a 6.6-inch display with a current-size Dynamic Island, a standard A19 chip rather than an A19 Pro chip, a single rear camera, and an Apple-designed 5G chip. He also expects the device to have a...
Read Full Article162 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Less Than Two Months Away: Everything We Know

Thursday July 25, 2024 5:43 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article130 comments
icloud private relay outage

iCloud Private Relay Experiencing Outage

Thursday July 25, 2024 3:18 pm PDT by
Apple’s iCloud Private Relay service is down for some users, according to Apple’s System Status page. Apple says that the iCloud Private Relay service may be slow or unavailable. The outage started at 2:34 p.m. Eastern Time, but it does not appear to be affecting all iCloud users. Some impacted users are unable to browse the web without turning iCloud Private Relay off, while others are...
Read Full Article81 comments

Top Rated Comments

Renzatic Avatar
Renzatic
158 months ago
Interestingly, it seems like I am not part of "lots of people" - Java has been deactivated on my Safari for months now, and I haven't even noticed it. :rolleyes:

Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.

Again, my point was: From an end user's perspective, Java is close to irrelevant nowadays. I don't care if it is still widely used in the back office (programming languages and habits can always change anyway).
Have you ever made a post here that wasn't some vitriolic diatribe on how something is stupid or how all people are idiots? Have you ever gone three posts in a row without using a :rolleyes: emote?

Why are you so internet angry?
Score: 5 Votes (Like | Disagree)
ristlin Avatar
ristlin
158 months ago
Who cares about Java anyway/nowadays?

I wait feverishly every month for new Java updates.
Score: 5 Votes (Like | Disagree)
r.harris1 Avatar
r.harris1
158 months ago
Interestingly, it seems like I am not part of "lots of people" - Java has been deactivated on my Safari for months now, and I haven't even noticed it. :rolleyes:

----------



Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.

Again, my point was: From an end user's perspective, Java is close to irrelevant nowadays. I don't care if it is still widely used in the back office (programming languages and habits can always change anyway).

Not really sure what your particular point is commenting in this thread if it has no relevance to you, though hey, your time is your own. I'm also not sure whether anyone cares, really, if you use it on your Mac or if you've shut down access, or whatever (but maybe that's just me :)) but to call it irrelevant is to perhaps not see the bigger picture. It's out there running a lot of stuff you interact with on a daily basis, as mentioned previously.
Score: 4 Votes (Like | Disagree)
macsmurf Avatar
macsmurf
158 months ago
Who cares about Java anyway/nowadays?

Given that Java is one of the most popular programming language in the world, at lot of developers (including me) care. It means I can use my mac at work.

Also, due to a rather stupid decision on a national scale, Java is required for logging into banks in Denmark.
Score: 4 Votes (Like | Disagree)
iDuel Avatar
iDuel
158 months ago




Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.
That isn't the point. The fact of the matter is that many consumers use Java for playing Java-based browser games. (i.e. Minecraft for PC & Mac which does require Java to be played in the web browser) I could also name off a few more browser-based Java games which are played by millions of users.
Score: 3 Votes (Like | Disagree)
Biolizard Avatar
Biolizard
158 months ago
Who cares about Java anyway/nowadays?

Last I heard Apple still uses WebObjects as its web application server technology to power both the Apple Online Store and the iTunes Store.

Want to take a bet at what WebObjects is written in? That's right; Java.
Score: 3 Votes (Like | Disagree)
Read All Comments