sl4shd0t
09-07-2012, 01:30 PM
http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/0/di</img> (http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/0/da)
http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/1/di</img> (http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/1/da)
hypnosec writes "Just yesterday Apple released updates to fix Java vulnerabilities, but it seems the patch doesn't actually target the recently discovered high-profile Java bug that has been the talk of the web during the last two weeks. The two updates – Java for OS X 2012-005 for OS X Lion and Java for Mac OS X 10.6 Update 10 for Mountain Lion, are meant to tackle the vulnerability described in CVE-2012-0547. But according to KerbsOnSecurity, it seems Cupertino hasn't addressed the recent mega-vulnerabilities in Java as described in CVE-2012-4681."Update: 09/07 12:00 GMT by S : As readers have pointed out, these updates address flaws in Java 6, which is the version Apple maintains. The recently-reported Java vulnerabilities primarily affect Java 7, the patching of which is handled solely by Oracle. Nothing to see here.http://a.fsdn.com/sd/twitter_icon_large.png (http://twitter.com/home?status=+Recent+Apple+Java+Update+Doesn't+Fix+ Critical+Java+Flaw+Claims+Researcher%3A+http%3A%2F %2Fbit.ly%2FRHfKUZ)http://a.fsdn.com/sd/facebook_icon_large.png (http://www.facebook.com/sharer.php?u=http%3A%2F%2Fapple.slashdot.org%2Fsto ry%2F12%2F09%2F06%2F2215247%2Frecent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher%3Futm_source%3Dslashdot%26utm_medium%3D facebook)http://www.gstatic.com/images/icons/gplus-16.png (http://plus.google.com/share?url=http://apple.slashdot.org/story/12/09/06/2215247/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher?utm_source=slashdot&utm_medium=googleplus)
Read more of this story (http://apple.slashdot.org/story/12/09/06/2215247/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher?utm_source=rss1.0moreanon&utm_medium=feed) at Slashdot.
http://feeds.feedburner.com/~r/Slashdot/slashdotDevelopers/~4/nbacMTlv6sA
More... (http://rss.slashdot.org/~r/Slashdot/slashdotDevelopers/~3/nbacMTlv6sA/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher)
http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/1/di</img> (http://feedads.g.doubleclick.net/~at/3k4_O_7eegY7q_9WY7DpC6IBL2o/1/da)
hypnosec writes "Just yesterday Apple released updates to fix Java vulnerabilities, but it seems the patch doesn't actually target the recently discovered high-profile Java bug that has been the talk of the web during the last two weeks. The two updates – Java for OS X 2012-005 for OS X Lion and Java for Mac OS X 10.6 Update 10 for Mountain Lion, are meant to tackle the vulnerability described in CVE-2012-0547. But according to KerbsOnSecurity, it seems Cupertino hasn't addressed the recent mega-vulnerabilities in Java as described in CVE-2012-4681."Update: 09/07 12:00 GMT by S : As readers have pointed out, these updates address flaws in Java 6, which is the version Apple maintains. The recently-reported Java vulnerabilities primarily affect Java 7, the patching of which is handled solely by Oracle. Nothing to see here.http://a.fsdn.com/sd/twitter_icon_large.png (http://twitter.com/home?status=+Recent+Apple+Java+Update+Doesn't+Fix+ Critical+Java+Flaw+Claims+Researcher%3A+http%3A%2F %2Fbit.ly%2FRHfKUZ)http://a.fsdn.com/sd/facebook_icon_large.png (http://www.facebook.com/sharer.php?u=http%3A%2F%2Fapple.slashdot.org%2Fsto ry%2F12%2F09%2F06%2F2215247%2Frecent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher%3Futm_source%3Dslashdot%26utm_medium%3D facebook)http://www.gstatic.com/images/icons/gplus-16.png (http://plus.google.com/share?url=http://apple.slashdot.org/story/12/09/06/2215247/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher?utm_source=slashdot&utm_medium=googleplus)
Read more of this story (http://apple.slashdot.org/story/12/09/06/2215247/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher?utm_source=rss1.0moreanon&utm_medium=feed) at Slashdot.
http://feeds.feedburner.com/~r/Slashdot/slashdotDevelopers/~4/nbacMTlv6sA
More... (http://rss.slashdot.org/~r/Slashdot/slashdotDevelopers/~3/nbacMTlv6sA/recent-apple-java-update-doesnt-fix-critical-java-flaw-claims-researcher)