Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple Releases Second Update to Java in Two Days

P

pboy2k5

macrumors newbie
May 7, 2005
17
0
I noticed the second update fixes the device playback capability between Vuze (torrent software) and iTunes because the first one gave an error message that iTunes was not installed whenever I launched Vuze.
 
C

codo

macrumors 6502
May 17, 2006
475
3
England, United Kingdom
Gosh I've been putting off restarting for weeks.... I really had better sort this out!

10hlmds.png
 
H

hajime

macrumors 604
Jul 23, 2007
7,733
1,217
Through software update, I got the first update. However, I cannot get the second update. Anybody knows the reason? I am using 10.6.8 Thanks.
 
adamw

adamw

macrumors 6502a
Sep 22, 2006
744
1,789
Since I found I was infected with this yesterday and removed it, I was told to download the "Little Snitch" app, which I googled and installed the 3 hour demo of. I thought my system was clean of this trojan, as I followed the F-Secure removal instructions, but it appears this trojan installs other stuff once it gets in (via the Java exploit).

Little Snitch informed me that a file named .rserv (~/.rserv) in my Users directory on my Mac was trying to connect to cuojshtbohtnet.com or .net and several other strange sounding web sites. I denied them doing so and Googled .rserv and another program on my Mac that was doing similar attempts.

Also watch out for a file named: com.adobe.reader.plist in user launch agents directory. It was attempting to contact these same strange websites as .rserv was. I Googled these names and found in the last few days many other Mac users are seeing this same behavior when catching these "buggers" via the "Little Snitch" app.

Again, even though my system showed clean via the F-Secure instructions after I removed the infected files they mention, I believe I still had 2 other infected program files (same file date of March 29th also) related to this trojan that went undetected, and were only found by running this "Little Snitch" app which monitors programs trying to use your outgoing Internet connection.
 
widestload

widestload

macrumors 6502a
Jun 10, 2008
635
931
manchester UK
Morod said:
To find out if you're infected, do this:


Originally Posted by Sirolway
What's the easiest way to determine if you're infected?...


In terminal run:
Quote:
defaults read /Applications/Safari.app/Contents/Info LSEnvironment
You should get this error:
Quote:
The domain/default pair of (/Applications/Safari.app/Contents/Info, LSEnvironment) does not exist
Then run:
Quote:
defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES
You should get this error:
Quote:
The domain/default pair of (/Users/YOURUSER/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist


You can copy and paste the two commands into Terminal. To open Terminal, go to Finder>Applications>Utilities>Terminal. Double click on Terminal. Hit enter after each command.
Just be careful when using Terminal. It's one of the few places where you can really mess up your computer.
Click to expand...

when you say that you should see those responses, does that mean you should see them if you are infected, or that's what you should see if every thing's 'normal' and you're not?
 
D

DrFreeman

macrumors member
Apr 9, 2010
44
0
pboy2k5 said:
I noticed the second update fixes the device playback capability between Vuze (torrent software) and iTunes because the first one gave an error message that iTunes was not installed whenever I launched Vuze.
Click to expand...

I was getting an error message in MATLAB as well. It is now gone after this update.
 
I

i.mac

macrumors 6502a
Dec 14, 2007
996
247
Westside guy said:
It's not unknown for a company to patch a patch if they discover the first patch had issues - just off the top of my head I can remember past instances where Microsoft, Apple, Adobe, and Mozilla did that.
Click to expand...

Who cares...

----------
Comeagain? said:
No, just turn Gatekeeper off. Its just there as protection for the uneducated.
Click to expand...

I'm an educated person, and I'll turn gatekeeper ON.

I would say that gatekeeper ON is a wise choice for M O S T folks, and most folks who own apple gear are highly educated.
 
Winter Charm

Winter Charm

macrumors 6502a
Jul 31, 2008
804
270
HishamAkhtar said:
So eventually all software will have to be downloaded from the App Store.

Jail-broken Macs? Who would have thought it.
Click to expand...

Absolutely wrong.

By default, digitally unsigned apps will not work, but in system pref's there's a toggle that lets you switch. Essentially that toggle lets power users run unsigned apps.

Signed apps will be available from the mac app store AS WELL AS from external downloads.

----------
codo said:
Gosh I've been putting off restarting for weeks.... I really had better sort this out!

Image
Click to expand...

Holy God....
 
Moonjumper

Moonjumper

macrumors 68030
Jun 20, 2009
2,740
2,908
Lincoln, UK
In the thread about the initial Java update, there was a reply that it broke uploading to the Mac App Store. I wonder if this patch is to fix that issue?
 
justperry

justperry

macrumors G5
Aug 10, 2007
12,557
9,750
I'm a rolling stone.
adamw said:
...................

Also watch out for a file named: com.adobe.reader.plist in user launch agents directory....................
Click to expand...

I think that file is safe, I deleted it about a week ago when cleaning up My Mac so I can not open it anymore to see what's inside, I did before and it seemed fine with Me but still deleted it.
I don't have .rserv and I checked My whole disk with clamX a few weeks ago, nothing showed up, also checked for the Java exploit and also nothing there.
So, that file seems fine, but delete it if you are not sure.

Moonjumper said:
In the thread about the initial Java update, there was a reply that it broke uploading to the Mac App Store. I wonder if this patch is to fix that issue?
Click to expand...

That fixed it.
 
W

wpugh

macrumors newbie
Jul 23, 2002
1
0
Details on second update

The first update installed

  • Java(TM) SE Runtime Environment (build 1.6.0_31-b04-413-11M3623)
The second update installed

  • Java(TM) SE Runtime Environment (build 1.6.0_31-b04-414-11M3626)
So there is some change to the actual JVM installed. Don't know what the changes are.
 
J

jeffmic

macrumors newbie
Oct 28, 2007
8
1
They fixed iTunes Producer with the update.

They fixed iTunes Producer with the update. It had a java error when uploading with version 001
 
C

cjmillsnun

macrumors 68020
Aug 28, 2009
2,399
48
King Flamez1 said:
I haven't gotten either of these updates and I'm running OSX 10.7.3 on my MBP
Should I be worried?
Click to expand...

No I wouldn't be worried. Java isn't installed on Lion by default but is an optional component. If Java isn't installed on your mac then it is safe and there is no need to update.
 
W

Wrathwitch

macrumors 65816
Dec 4, 2009
1,303
55
For what it's worth, this update isn't just for Lion. I just installed it on my iMac which is running SL.
 
longofest

longofest

Editor emeritus
Jul 10, 2003
2,924
1,682
Falls Church, VA
Michaelgtrusa said:
Well they are on top of this.
Click to expand...

No, they really aren't. If they were, they would have released these patches weeks ago when oracle released them!

----------
macsmurf said:
Java 6 update 31 for Windows and Linux was released february 27 in reponse to this vulnerability. Apple releases it April 3 - and they apparently still messed it up.

If that's upping their game I'd hate to see their previous game.
Click to expand...

I think they took 6 months to get a java vulnerability patched once...
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom