May 19, 2010

Apple updates Java for security bugs

Apple on Tuesday released security updates for Java for Mac Leopard and Snow Leopard to close dozens of holes, the worst of which could lead to arbitrary code execution.

The update for Snow Leopard, Java for Mac OS X 10.6 Update 2, fixes 20 bugs, all of which could be exploited if a user is tricked into visiting a web page containing a maliciously crafted Java applet, Apple said. The vulnerabilities could lead to unexpected application termination or allow an attacker to execute arbitrary code with the privileges of the current user.

The update for Leopard, Mac OS X 10.5 Update 7, patches some 60 bugs, which could lead to the same problems, according to Mac security vendor Intego.

An advisory posted by the US-CERT encouraged users and administrators to apply the updates.

The updates are available at Apple's Support Downloads page.

Related Articles
Related Topics

Sign up to our newsletters

More in News

House Intelligence Committee OKs amended version of controversial CISPA

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.

Three LulzSec members plead guilty in London

Ryan Ackroyd, 26; Jake Davis, 20; and Mustafa al-Bassam, 18, who was not named until now because of his age, all admitted their involvement in the hacktivist gang's attack spree.