New in OS X: Get MacRumors Push Notifications on your Mac

Resubscribe Now Close

Apple Updates Java for Lion and Snow Leopard in Sync with Oracle

Wednesday June 13, 2012 11:09 am PDT by Eric Slivka
Apple yesterday released a pair of software updates for Java, issuing versions for both Lion and Snow Leopard. The update in part builds upon an earlier Java update for Lion that disabled automatic execution of Java applets in an attempt to minimize the impact of Java-based malware threats like Flashback.
This update configures web browsers to not automatically run Java applets. Java applets may be re-enabled by clicking the region labeled "Inactive plug-in" on a web page. If no applets have been run for an extended period of time, the Java web plug-in will deactivate.
As noted by Krebs on Security, the release is notable because it came on the same day that Oracle released updates for Java on other platforms. Apple has long been criticized for lagging on Java updates, a policy which allowed the Flashback malware to flourish as Mac systems remained unprotected against the threat even though Oracle had patched the vulnerability on other systems several months before.
The update Oracle released yesterday, Java 6 Update 33 and Java 7 Update 5, fixes at least 14 security flaws in the oft-attacked software that is installed on more than three billion devices worldwide. Apple’s Java update brings Java on the Mac to 1.6.0_33, and patches 11 of the 14 security vulnerabilities that Oracle fixed in Tuesday’s release. It’s unclear whether those other three flaws simply don’t exist in the Mac version of Java, but we’ll take progress where we can get it.
With Java SE 7 set to come to the Mac later this year, control over updates is transitioning from Apple to the OpenJDK project, with both Apple and Oracle providing expertise to ensure that updates for Mac roll out on a timely basis. That transition was begun back in late 2010, with Steve Jobs noting at the time that having Apple responsible for Java updates on the Mac "may not be the best way to do it."
[ 34 comments ]


Top Rated Comments

(View all)

Avatar
Renzatic
83 months ago

Interestingly, it seems like I am not part of "lots of people" - Java has been deactivated on my Safari for months now, and I haven't even noticed it. :rolleyes:

Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.

Again, my point was: From an end user's perspective, Java is close to irrelevant nowadays. I don't care if it is still widely used in the back office (programming languages and habits can always change anyway).


Have you ever made a post here that wasn't some vitriolic diatribe on how something is stupid or how all people are idiots? Have you ever gone three posts in a row without using a :rolleyes: emote?

Why are you so internet angry?
Rating: 5 Votes
Avatar
ristlin
83 months ago

Who cares about Java anyway/nowadays?


I wait feverishly every month for new Java updates.
Rating: 5 Votes
Avatar
macsmurf
83 months ago

Who cares about Java anyway/nowadays?


Given that Java is one of the most popular programming language in the world, at lot of developers (including me) care. It means I can use my mac at work.

Also, due to a rather stupid decision on a national scale, Java is required for logging into banks in Denmark.
Rating: 4 Votes
Avatar
r.harris1
83 months ago

Interestingly, it seems like I am not part of "lots of people" - Java has been deactivated on my Safari for months now, and I haven't even noticed it. :rolleyes:

----------



Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.

Again, my point was: From an end user's perspective, Java is close to irrelevant nowadays. I don't care if it is still widely used in the back office (programming languages and habits can always change anyway).


Not really sure what your particular point is commenting in this thread if it has no relevance to you, though hey, your time is your own. I'm also not sure whether anyone cares, really, if you use it on your Mac or if you've shut down access, or whatever (but maybe that's just me :)) but to call it irrelevant is to perhaps not see the bigger picture. It's out there running a lot of stuff you interact with on a daily basis, as mentioned previously.
Rating: 4 Votes
Avatar
r.harris1
83 months ago

Who cares about Java anyway/nowadays?


A tremendous amount of enterprise server-side development is Java-based. This means things like provisioning systems in telecom, billing systems, customer chat, preference management, identity management, etc behind a lot of the web sites you use will very likely have a strong Java presence, among many other things.

So the answer is "Lots of people and companies".
Rating: 3 Votes
Avatar
klamse25
83 months ago

Who cares about Java anyway/nowadays?


You're completely ignorant.
Java is the most widely used cross-platform language today.

PS: Ever heard of Minecraft? That game is based on Java.
So millions of people are "who care about Java."
Rating: 3 Votes
Avatar
iDuel
83 months ago





Minecraft is available for iOS and does NOT require Java on the client side...not that I will ever play that POS, of course.


That isn't the point. The fact of the matter is that many consumers use Java for playing Java-based browser games. (i.e. Minecraft for PC & Mac which does require Java to be played in the web browser) I could also name off a few more browser-based Java games which are played by millions of users.
Rating: 3 Votes
Avatar
Biolizard
83 months ago

Who cares about Java anyway/nowadays?


Last I heard Apple still uses WebObjects as its web application server technology to power both the Apple Online Store and the iTunes Store.

Want to take a bet at what WebObjects is written in? That's right; Java.
Rating: 3 Votes
Avatar
brdeveloper
83 months ago

Who cares about Java anyway/nowadays?


Java developers mainly. "Facebook For Every Phone" app is in Java ME (mobile). A lot of corporate systems are Java SE and EE and sites are Java EE (server-side).

Java SE was never broadly adopted for the common user, although an operating system that wants to support corporative software (usage and development) must run Java apps.
Rating: 2 Votes
Avatar
brdeveloper
83 months ago


Again, my point was: From an end user's perspective, Java is close to irrelevant nowadays. I don't care if it is still widely used in the back office (programming languages and habits can always change anyway).


From an end user perspective, a Mac is close to irrelevant too. In the iStuff era, creating content is irrelevant. All an end user need is a good consuming platform.

Java is very relevant in the production side. Almost everything a browser runs is generated by server-side applications written primarily in PHP, Java, .NET, Python and Ruby. Also, a lot of useful mobile apps are written in Java ME (of course, not the iPhone ones which doesn't support it). Java SE (standalone desktop apps) are successful in the academy and corporations.

Bear in mind that a Mac is generally a workstation, focused on the production side while iStuff devices are for the end-user.
Rating: 2 Votes

[ Read All Comments ]