Sun, Dec 16 2007 14:30
Apple fixes 18 flaws in Tiger's Java
Apple Inc. has updated Java for Mac OS X 10.4, aka Tiger, to patch 18 different vulnerabilities, including some fixed as long ago as May by Java's maker, Sun Microsystems Inc.
Apple's newest operating system, dubbed Leopard, does not need to be patched because it includes the updated Java components.
According to the accompanying advisory,
Tiger's Java, Java 1.4 and J2SE 5.0 contain flaws that in some cases
can lead to what Apple calls "arbitrary code execution," which means
that attackers may be able to insert their own malware during an
exploit and/or gain complete control of the machine. Apple, unlike
rivals such as Microsoft Corp., does not rank or rate its security
updates to give users an idea of the severity of the bugs.
Full Story at computerworld.com
Filed under: News