What has been fixed?
Apple has published Java updates for Mac OS X 10.6 Snow Leopard and 10.7 Lion which bring the Mac version of Java in line with the current Oracle release. The updates improve compatibility and close several security holes found in previous versions.
According to Apple, some of the vulnerabilities could allow an untrusted Java applet to execute code elsewhere on a user’s computer, outside of the standard Java sandbox. While this is possible, to fall victim to an attack, the user must first visit a web page with a maliciously crafted Java applet.
More details about the updates, including a full list of fixes, can be found in Apple’s security blog.
Who is affected?
This patch only affects users operating Java on a Macintosh.
How do I make sure I’m protected?
The updates can be installed using the built-in Software Update service within the Mac OS X. Alternatively all of these updates are available to download from Apple’s Support Downloads site.
As usual, users are advised to quit web browsers and Java applications before installing any updates.
Leave a reply
