Apply Java patch to avoid being exploited by Flashback botnet

Apple just released a second update to Java for OS X, a mere two days after the first update. Dubbed Java for OS X 2012-001 and Java for OS X 2012-002, these two updates patched the Java hole that allows the spread of Flashback botnet. Apply the patch as soon as possible using the usual Software Update on your Mac.

Flashback botnet is said to affect as much as more than 500,000 Macs at the moment. When affected by Flashback trojan, a Mac will be used to hijack search traffic with modified webpages displayed in the web browser. If you suspect your Mac is affected, please follow F-Secure’s removal instructions via Terminal.

Java for OS X Lion


With Mac OS X Lion, Apple has a change of direction in terms of Java runtime support. Apple has stated that it is returning the development and support of Java runtime back to Oracle. Java runtime is not bundled as default in Lion as in previous Mac OS X. Instead it is a separate download. Apparently the transition of Java runtime codebase back to Oracle is not ready. Thus Apple is still providing its own version of Java for Mac OS X Lion. You can download Apple’s Java for OS X Lion from the link below.

Download Java for OS X Lion

Apple releases iTunes 10.2.1 and updates for Java for Mac OS X

itunes java

Apple has released a bug fixes iTunes 10.2.1, one week after the release of version 10.2 which is required for the coming iOS 4.3. You can download the update from the usual Software Update. iOS 4.3 is slated to release together with iPad 2 on March 11.

Apple also release update to Java for Mac OS X for both 10.5 Leopard and 10.6 Snow Leopard. The update improves compatibility, security and reliability running Java apps on Java Virtual Machine. These are updates from Apple directly. Apple will drop its own Java for Mac OS X Lion, instead Oracle will supply Java runtime for the next iteration of Mac OS X.


Apple open source its Java tools and technologies to OpenJDK for Mac OS X

Calming fear and uncertainties of its continue support of Java on Mac OS X, Apple today together with Oracle announced that it is open sourcing its Java tools and technologies to OpenJDK project. This ensures that future Java SE 7 implementation for Mac OS X will enjoy a good foundation to begin with.

Oracle and Apple® today announced the OpenJDK project for Mac OS® X. Apple will contribute most of the key components, tools and technology required for a Java SE 7 implementation on Mac OS X, including a 32-bit and 64-bit HotSpot-based Java virtual machine, class libraries, a networking stack and the foundation for a new graphical client. OpenJDK will make Apple’s Java technology available to open source developers so they can access and contribute to the effort.

Apple also confirmed that current version of Java SE 6 will continue to be available from Apple for Mac OS X Snow Leopard and next year’s Mac OS X Lion. Future version of Java for Mac OS X will come from Oracle.

Oracle and Apple Announce OpenJDK Project for Mac OS X

Apple ceased maintenance of its own ported Java runtime

Apple in its release notes for Java for Mac OS X 10.6 Update 3 stated that Apple’s own port of Java runtime is no longer maintained. Apple likely will remove its own Java runtime in Mac OS X Lion.

This means that the Apple-produced runtime will not be maintained at the same level, and may be removed from future versions of Mac OS X. The Java runtime shipping in Mac OS X 10.6 Snow Leopard, and Mac OS X 10.5 Leopard, will continue to be supported and maintained through the standard support cycles of those products.

Apple ported its own Java runtime for a better integration with OS X user interface elements. The runtime is shipped with Leopard and Snow Leopard. By not maintaining its own Java runtime, Mac users has to rely on official Java runtime by Oracle. Java application will not look as Mac like using non-Apple Java runtime. Using official Oracle Java runtime will save Apple from Java security blame as it is no longer responsible for Oracle’s software defects.

Apple’s Java Deprecation