Sun, Dec 16 2007 14:30 Don

Apple fixes 18 flaws in Tiger's Java

Apple Inc. has updated Java for Mac OS X 10.4, aka Tiger, to patch 18 different vulnerabilities, including some fixed as long ago as May by Java's maker, Sun Microsystems Inc.

Apple's newest operating system, dubbed Leopard, does not need to be patched because it includes the updated Java components.

According to the accompanying advisory, Tiger's Java, Java 1.4 and J2SE 5.0 contain flaws that in some cases can lead to what Apple calls "arbitrary code execution," which means that attackers may be able to insert their own malware during an exploit and/or gain complete control of the machine. Apple, unlike rivals such as Microsoft Corp., does not rank or rate its security updates to give users an idea of the severity of the bugs.

Full Story at computerworld.com 

 

Filed under: