Skip to content
Thoughtful, detailed coverage of everything Apple for 28 years
and the TidBITS Content Network for Apple professionals
2 comments

Java for OS X Lion 2012-001 and Java for Mac OS X 10.6 Update 7

Apple has released Java for OS X Lion 2012-001 and Java for Mac OS X 10.6 Update 7, which both address a vulnerability in the Java framework that can be exploited by the Flashback malware. Ars Technica reported on Monday that the latest variant of the malware can utilize a Java vulnerability “to hijack Macs even when users don’t enter an administrative password.” According to Apple’s security overview for this update, this can occur when visiting a Web page that is running an untrusted Java applet. (For more about Flashback, see “Beware the Morphing Flashback Malware,” 27 February 2012.) The update is available via Software Update and direct download. (Free, 66.9 MB and 79.7 MB)

Subscribe today so you don’t miss any TidBITS articles!

Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For 28 years, we’ve published professional, member-supported tech journalism that makes you smarter.

Registration confirmation will be emailed to you.

Comments About Java for OS X Lion 2012-001 and Java for Mac OS X 10.6 Update 7