Mac OS X 10.4 - Java Release 6
Apple fixes 18 flaws in Tiger's Java
December 15, 2007 (Computerworld) - "Apple Inc. has updated Java for Mac OS X 10.4, aka Tiger, to patch 18 different vulnerabilities, including some fixed as long ago as May by Java's maker, Sun Microsystems Inc. Apple's newest operating system, dubbed Leopard, does not need to be patched because it includes the updated Java components. According to the accompanying advisory*, Tiger's Java, Java 1.4 and J2SE 5.0 contain flaws that in some cases can lead to what Apple calls "arbitrary code execution," which means that attackers may be able to insert their own malware during an exploit and/or gain complete control of the machine. Apple, unlike rivals such as Microsoft Corp., does not rank or rate its security updates to give users an idea of the severity of the bugs..."
Release Date: 2007-12-17
Critical: Highly critical
Edited by apluswebmaster, 17 December 2007 - 07:12 AM.