Apple Patches Java Vulnerabilities
Apple has released two key Java updates, Java for Mac OS X 10.6 Update 1 and Java for Mac OS X 10.5 Update 6.
"The update addresses multiple security vulnerabilities that could enable an untrusted Java applet on a maliciously crafted Web site to obtain elevated user privileges and execute arbitrary code," writes TidBITS’ Doug McLean. "A vulnerability that caused expired Java applet certificates to be treated as valid has also been addressed. Details regarding the security aspects of this update are available on Apple’s Web site."
"The Java for Mac OS X 10.5 Update 6 update also disables J2SE 1.4.2, as it’s no longer being updated to fix issues," notes TUAW’s Joachim Bean.
More here from PC World … and more here from AppleInsider.