Apple updates Java 6 for Snow Leopard

Summary:Apple has offered a Java fix for users of one of its older OS X operating systems.

An update for Java SE 6 for Snow Leopard has fixed multiple vulnerabilities and resolves a block Apple placed on browser plugins for the software.

Java 6 Update 12, released on Friday, clears last week's unannounced block by Apple on browser plugins for the latest versions of Java 6 and 7.

The update configures web browsers to not automatically run Java applets and fixes 30 vulnerabilities in 1.6.0_37 shared with Oracle's Java 7 Update 11. The Java 7 flaws were fixed in Java 7 Update 13 .

Read this

How to disable Java in your browser on Windows, Mac

Amid a serious security flaw in the latest version of Java 7, where even the U.S. Department of Homeland Security has warned users to disable the plug-in, here's how you do it.

While Mountain Lion and Lion users could apply Oracle's Java 7 Update 13 last Friday, Snow Leopard users rely on Apple for updates to Java 6: last August, Oracle took over the maintenance of Java for OS X for Java 7 Update 6 onwards; however, Java 7 is not supported on Snow Leopard and as of this month Oracle will stop providing updates for Java 6 altogether.

Apple's unannounced block on Java browser plug-ins last week caught some Mac users that run Java applications by surprise. The move by Apple marginally pre-empted an unexpectedly early critical patch update by Oracle , two weeks ahead of its scheduled 19 February release.

Oracle's director of software security assurance Eric Maurice said in a blog post its February update had been accelerated in response to active exploitation of one of the 44 vulnerabilities affecting the Java Runtime Environment in desktop browsers.

Maurice said that this latest update from Oracle demonstrated the company's intention to "accelerate the release of Java fixes" because Java in browsers, being OS-independent, is an attractive target for hackers.

A recent analysis by Russian security firm Kaspersky Lab found 41 major versions of Java 6 and 7 being used, many of them containing flaws that were being exploited. Around 30 percent of users failed to update Java to the latest edition by the time a new update was released, its researchers said.

Topics: Security, Apple, Oracle

About

Liam Tung is an Australian business technology journalist living a few too many Swedish miles north of Stockholm for his liking. He gained a bachelors degree in economics and arts (cultural studies) at Sydney's Macquarie University, but hacked (without Norse or malicious code for that matter) his way into a career as an enterprise tech, s... Full Bio

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.