Apple releases Java update

Java for Mac OS X 10.5 Update 4 delivers improved reliability, security, and compatibility for Java SE 6, J2SE 5.0 and J2SE 1.4.2 on Mac OS X v10.5.

This release updates Java SE 6 to version 1.6.0_13, J2SE 5.0 to version 1.5.0_19, and J2SE 1.4.2 to 1.4.2_21. It is only for Mac OS X v10.5.7 and later versions of Mac OS X v10.5.

This release of J2SE 5.0 and J2SE 1.4.2 supports all Intel- and PowerPC-based Macs. Java SE 6 is available on 64-bit, Intel-based Macs only.

The update is available for download here.

Multiple vulnerabilities in Java 1.6.0_07
Multiple vulnerabilities exist in Java 1.6.0_07, the most serious of which may allow an untrusted Java applet to obtain elevated privileges. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating Java 1.6 to version 1.6.0_13.

Multiple vulnerabilities in Java 1.5.0_16
Multiple vulnerabilities exist in Java 1.5.0_16, the most serious of which may allow an untrusted Java applet to obtain elevated privileges. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating Java 1.5 to version 1.5.0_21.

Multiple vulnerabilities in Java 1.4.2_18
Multiple vulnerabilities exist in Java 1.4.2_18, the most serious of which may allow an untrusted Java applet to obtain elevated privileges. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating Java 1.4 to version 1.4.2_21.

Untrusted Java applets may obtain elevated privileges
Multiple vulnerabilities in the “Aqua Look and Feel for Java” implementation may allow an untrusted Java applet to obtain elevated privileges. Visiting a web page containing a maliciously crafted Java applet may lead to arbitrary code execution with elevated privileges. This update addresses the issues by denying access to internal details of Aqua Look and Feel for untrusted Java applets. This issue only affects Java 1.5 on Mac OS X v10.5 systems.




Share this