Go Back   MacRumors Forums > News and Article Discussion > MacRumors.com News Discussion

Reply
 
Thread Tools Search this Thread Display Modes
Old Apr 6, 2012, 12:00 AM   #1
MacRumors
macrumors bot
 
Join Date: Apr 2001
Apple Releases Second Update to Java in Two Days




Apple has released its second update in two days to the OS X implementation of Java. The first update closed a vulnerability that has led to the infection of more than 600,000 Macs via a trojan horse. The infections have received increased media attention in the past day, including a splashed headline on the Drudge Report.




While yesterday's Java for OS X Lion 2012-001 update closed the vulnerability in Java 1.6.0_29, there's no indication what the new update -- called Java for OS X 2012-002 -- fixes. The update notes link to the same support document as update 2012-001.

Last year, Apple introduced a security update to OS X that would automatically remove malicious software from OS X installations. It isn't clear if the infected machines can be fixed via the internal OS X security mechanisms.

In OS X Mountain Lion, the next version of the OS X software that will be released this summer, Apple will include a feature called Gatekeeper. The new system relies not only on Mac App Store distribution as means of vetting apps, but also on a new "identified developer" program under which developers distributing their applications outside of the Mac App Store can register with Apple and receive a personalized certificate they can use to sign their applications. Apple can then use that system to track developers and disable their certificates if malicious activity is detected.

Article Link: Apple Releases Second Update to Java in Two Days
MacRumors is offline   0 Reply With Quote
Old Apr 6, 2012, 12:01 AM   #2
Jabman
macrumors newbie
 
Join Date: Sep 2011
Hey if it's broken fix it.
__________________
Mac mini Server ______ |_____ 13" MacBook Pro Retina
2.0GHz Quad-Core i7___________2.4GHz Dual-Core i5
8GB RAM____________________ 8GB RAM
2X750GB 7200rpm HDD________ 256GB flash storage
Jabman is offline   7 Reply With Quote
Old Apr 6, 2012, 12:02 AM   #3
-LikesMac-
macrumors 6502
 
Join Date: Jun 2010
Amazing

I went back to the main page after reading the article about 600K Macs being infected. Wow, Apple's upped their game here against this kind of thing.
__________________

13'' MBP, 2.7GHz i7, 4GB RAM, 500GB HDD, HD3000
-LikesMac- is offline   0 Reply With Quote
Old Apr 6, 2012, 12:06 AM   #4
fel10
macrumors 65816
 
Join Date: Feb 2010
Location: Woodstock, GA USA
Send a message via MSN to fel10 Send a message via Yahoo to fel10
66.6

__________________
15' Macbook Pro Retina , 2.2 GHz, Intel Core i7, 16 GB RAM, 256 SSD
iPhone 5 64GB
Space Gray iPad Air, 64 GB, Wi Fi
TVs
fel10 is offline   9 Reply With Quote
Old Apr 6, 2012, 12:09 AM   #5
Westside guy
macrumors 601
 
Westside guy's Avatar
 
Join Date: Oct 2003
Location: The soggy part of the Pacific NW
Quote:
Originally Posted by MacRumors View Post
While yesterday's Java for OS X Lion 2012-001 update closed the vulnerability in Java 1.6.0_29, there's no indication what the new update -- called Java for OS X 2012-002 -- fixes.
It's not unknown for a company to patch a patch if they discover the first patch had issues - just off the top of my head I can remember past instances where Microsoft, Apple, Adobe, and Mozilla did that.
__________________
Your post count is insufficient to view signature
Westside guy is offline   5 Reply With Quote
Old Apr 6, 2012, 12:15 AM   #6
Delighted
macrumors 6502
 
Join Date: Feb 2012
yay patch! something oh so satisfying when you download a new patch, I just love them!

----------

Quote:
Originally Posted by Westside guy View Post
It's not unknown for a company to patch a patch if they discover the first patch had issues - just off the top of my head I can remember past instances where Microsoft, Apple, Adobe, and Mozilla did that.
I agree, it happens all the time. but i love downloading patches
__________________
| Apple Fan | Forum Contributor | Tumblr | Twitter |
Proud Owner of:
Macbook Pro (13.3" Mid 2010) MC374LL/A Snow Leopard
Delighted is offline   6 Reply With Quote
Old Apr 6, 2012, 12:18 AM   #7
davidg4781
macrumors 65816
 
davidg4781's Avatar
 
Join Date: Oct 2006
Location: Moulton, TX
This isn't showing in my Software Update. I'm on a CD MacBook running Snow Leopard. Could this be why?
__________________
2010 MBP 13" 2.4 GHz 4 GB RAM 750 GB HDD iMac G4 20" 1.25GHZ 2 GB RAM 250 GB HDD
iPhone 5S 4" 32 GB Apple TV 3rd gen
davidg4781 is offline   0 Reply With Quote
Old Apr 6, 2012, 12:19 AM   #8
Jabman
macrumors newbie
 
Join Date: Sep 2011
Quote:
Originally Posted by fel10 View Post
66.6

Image
It's also Friday the 6th right now.
__________________
Mac mini Server ______ |_____ 13" MacBook Pro Retina
2.0GHz Quad-Core i7___________2.4GHz Dual-Core i5
8GB RAM____________________ 8GB RAM
2X750GB 7200rpm HDD________ 256GB flash storage
Jabman is offline   5 Reply With Quote
Old Apr 6, 2012, 12:20 AM   #9
Negritude
macrumors regular
 
Join Date: Jul 2011
Quote:
Originally Posted by davidg4781 View Post
This isn't showing in my Software Update. I'm on a CD MacBook running Snow Leopard. Could this be why?
Yeah, this is Lion-only.
Negritude is offline   2 Reply With Quote
Old Apr 6, 2012, 12:24 AM   #10
MetalMoon
macrumors member
 
Join Date: Dec 2010
Location: San Jose
They must call upon the powers of the evil underworld to stop this malware
MetalMoon is offline   2 Reply With Quote
Old Apr 6, 2012, 12:30 AM   #11
HishamAkhtar
macrumors 6502a
 
Join Date: Oct 2011
So eventually all software will have to be downloaded from the App Store.

Jail-broken Macs? Who would have thought it.
HishamAkhtar is offline   -9 Reply With Quote
Old Apr 6, 2012, 12:43 AM   #12
MarkMS
macrumors 6502a
 
Join Date: Aug 2006
Straight from Apple's Java mailing list. Just an issue with Xcode and App Loader in OS X Lion. Snow Leopard users don't need the tiny update.

Quote:
Java developers,

Today we re-shipped our Java 1.6.0_31 for OS X Lion today to address a critical issue we found in Xcode and the Application Loader tool. This new "Java for OS X 2012-002" package is effectively identical to "Java for OS X 2012-001", with the exception of a few symlinks and version numbers.

For the sake of expediency, we have re-rolled the automatic update as our standard full combo updater, with the hope that most users have not yet been presented with 2012-001. We considered creating a delta update for users who already installed 001, but that would have made the process of getting these fixes to you take longer.

We apologize for the inconvenience, and would like to offer our thanks to the developers who caught this issue and reported it to us as quickly as they did. This issue only impacts Lion users, so Snow Leopard users have nothing to reinstall.

Over the next few days, we will catch up with producing updated release notes, tech notes, and developer packages with the revised 002 version numbers.

Manual download links:
Java for OS X 2012-002: <http://support.apple.com/kb/DL1515>
Java for Mac OS X 10.6 Update 7: <http://support.apple.com/kb/DL1516>
MarkMS is offline   7 Reply With Quote
Old Apr 6, 2012, 01:39 AM   #13
handel30
macrumors member
 
Join Date: Jul 2011
Location: Miami, Florida
Infected??

Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.
handel30 is offline   -7 Reply With Quote
Old Apr 6, 2012, 01:40 AM   #14
Dragado
Banned
 
Join Date: Mar 2012
Quote:
Originally Posted by Jabman View Post
It's also Friday the 6th right now.
Does this mean the world's going to end again? I don't think I can take another world ending; I may die of laughter.

Quote:
Originally Posted by handel30 View Post
Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.
By the way, laws of computing 101: The OK button agrees to something, the Cancel/close window button disagrees. If you click OK, know what you're saying OK to.

EDIT: In other words, stop using it to close windows.
Dragado is offline   16 Reply With Quote
Old Apr 6, 2012, 01:44 AM   #15
LarryC
macrumors 6502
 
Join Date: Jul 2002
Location: North America
Quote:
Originally Posted by davidg4781 View Post
This isn't showing in my Software Update. I'm on a CD MacBook running Snow Leopard. Could this be why?
Are users of Snow Leopard effected by this latest attack? I'm running Snow Leopard, too. When I ran software update (just a few minutes ago) all I had to download was a 7.9MB update for some type of camera. I suppose that Apple will get around to addressing the older OS's as soon as they can. What was this attack doing to computers? And lastly, are the iOS devices also effected?
__________________
LarryC
LarryC is offline   0 Reply With Quote
Old Apr 6, 2012, 01:49 AM   #16
faroZ06
Banned
 
Join Date: Apr 2009
Only on Mac OS will the system updates actually remove malware for you. Apple has obviously been preparing for the malware attacks (not viruses) they will get if they become popular.

I guess this is a reason to stay updated. However, I'm so out of date that the malware will not be compatible with my PC
faroZ06 is offline   2 Reply With Quote
Old Apr 6, 2012, 01:58 AM   #17
MarkMS
macrumors 6502a
 
Join Date: Aug 2006
Quote:
Originally Posted by LarryC View Post
Are users of Snow Leopard effected by this latest attack? I'm running Snow Leopard, too. When I ran software update (just a few minutes ago) all I had to download was a 7.9MB update for some type of camera. I suppose that Apple will get around to addressing the older OS's as soon as they can. What was this attack doing to computers? And lastly, are the iOS devices also effected?
Yes, SL is vulnerable even more than typical OS X Lion users, because SL had Java preinstalled. Apple removed it in OS X Lion like they did with Flash a year or so ago so users have to go to Adobe's site to get the latest version. Are you sure you haven't downloaded it yet? I just updated my old MacBook Pro with Snow Leopard and it was in Software Update.app. Check /Applications/Utilities/Java Preferences and make sure the version is 1.6.0_31. The vulnerable version of Java is 1.6.0_29, I believe.

Quote:
Originally Posted by handel30 View Post
Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.

Probably not infected, unless you surf a lot of shady sites. Go here: http://www.f-secure.com/v-descs/troj...shback_i.shtml and follow their manual removal instructions. If you follow steps 1-3 and skip to 8 and you get those two error messages, then you are NOT infected.

Also if you use OS X 10.7 Lion and didn't download Java, you should not be infected with this trojan. If you use Lion w/ Java installed or Snow Leopard (10.6) which comes with Java preinstalled, you will want to follow those F-secure instructions to check if you have the trojan.

Don't forget to go to Safari>Preferences>Security tab>unclick "Enable Java".

Hope this helps!

Last edited by MarkMS; Apr 6, 2012 at 02:04 AM.
MarkMS is offline   5 Reply With Quote
Old Apr 6, 2012, 02:47 AM   #18
adamw
macrumors regular
 
Join Date: Sep 2006
As I had a Mac that was infected with this trojan, and removed it yesterday when news came out about this, I appreciate Apple diligently putting out this 2nd Java update to help protect users. Thanks also for the above Java mailing list description from Apple posted of why they re-released the Java update.
__________________
Free Christian Books
adamw is offline   -1 Reply With Quote
Old Apr 6, 2012, 02:54 AM   #19
faroZ06
Banned
 
Join Date: Apr 2009
I'm guessing that Apple is trying to put shame on Java as a bad standard by making it not come with Lion? It seems pretty vulnerable and inefficient, but there is no alternative. Java works on everything!

----------

Quote:
Originally Posted by LarryC View Post
Are users of Snow Leopard effected by this latest attack? I'm running Snow Leopard, too. When I ran software update (just a few minutes ago) all I had to download was a 7.9MB update for some type of camera. I suppose that Apple will get around to addressing the older OS's as soon as they can. What was this attack doing to computers? And lastly, are the iOS devices also effected?
First, to answer one of your questions, iOS is not affected since it does not have Java on it (unless you jailbreak).

Also, does anyone know if Leopard is vulnerable to this? I highly doubt that I'll get any malware since I am very experienced, but I'm just wondering.
faroZ06 is offline   1 Reply With Quote
Old Apr 6, 2012, 02:56 AM   #20
Westside guy
macrumors 601
 
Westside guy's Avatar
 
Join Date: Oct 2003
Location: The soggy part of the Pacific NW
Quote:
Originally Posted by faroZ06 View Post
Only on Mac OS will the system updates actually remove malware for you.
Actually Microsoft Windows has included a "Malicious Software Removal Tool" with every Patch Tuesday release set for the past several years - On XP, Vista, and Windows 7. By default it downloads and runs automatically.

I agree it's a good thing - it's just that Apple's not the only one doing it.
__________________
Your post count is insufficient to view signature
Westside guy is offline   2 Reply With Quote
Old Apr 6, 2012, 03:02 AM   #21
Morod
macrumors 65816
 
Join Date: Jan 2008
Location: On The Nickel, over there....
Quote:
Originally Posted by handel30 View Post
Hi. Can you guys tell me whether you think my Macbook got infected? Yesterday I did a search for "msnbc live feed online." Two of the results were websites called zahipedia.info.com and the other epctv.com. I can't remember which of the two it was (I think the latter), but, when I went to it, a small window popped up telling me that I should clean my computer of junk. I clicked OK to get rid of the window, then Safari froze up. I couldn't even quit it until I forced quit it via Finder. Could this have infected my computer? My Macbook is fairly new and, as far as I know, free of junk. Is epctv a dangerous site? Why did it tell me I had junk? How would I find out if I got infected? Thanks.
To find out if you're infected, do this:


Originally Posted by Sirolway
What's the easiest way to determine if you're infected?...


In terminal run:
Quote:
defaults read /Applications/Safari.app/Contents/Info LSEnvironment
You should get this error:
Quote:
The domain/default pair of (/Applications/Safari.app/Contents/Info, LSEnvironment) does not exist
Then run:
Quote:
defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES
You should get this error:
Quote:
The domain/default pair of (/Users/YOURUSER/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist


You can copy and paste the two commands into Terminal. To open Terminal, go to Finder>Applications>Utilities>Terminal. Double click on Terminal. Hit enter after each command.
Just be careful when using Terminal. It's one of the few places where you can really mess up your computer.
__________________
Everything should be made as simple as possible, but not simpler.
Albert Einstein
Morod is offline   6 Reply With Quote
Old Apr 6, 2012, 03:06 AM   #22
Comeagain?
macrumors 68020
 
Comeagain?'s Avatar
 
Join Date: Feb 2011
Location: Spokane, WA
Quote:
Originally Posted by HishamAkhtar View Post
So eventually all software will have to be downloaded from the App Store.

Jail-broken Macs? Who would have thought it.
No, just turn Gatekeeper off. Its just there as protection for the uneducated.
__________________
Questions? MRoogle it!
Current iOS 8 "All the little things!"
MR Scavenger Score: 1
Comeagain? is offline   5 Reply With Quote
Old Apr 6, 2012, 03:10 AM   #23
faroZ06
Banned
 
Join Date: Apr 2009
Quote:
Originally Posted by Comeagain? View Post
No, just turn Gatekeeper off. Its just there as protection for the uneducated.
Yep, Apple would never lock up the Mac. Gatekeeper is meant to prevent those who cannot go to System Preferences and disable it from downloading any apps that aren't safe. It's a good idea.

However, I think the uneducated should just be using iPads instead of full-on PCs. We're getting an iPad 2 for our grandma so she can do everything without getting stuck in a mess. I know someone who payed a lot of money to get her Mac cleaned of viruses... my guess is that she got ripped off.
faroZ06 is offline   3 Reply With Quote
Old Apr 6, 2012, 03:23 AM   #24
Michaelgtrusa
macrumors 603
 
Michaelgtrusa's Avatar
 
Join Date: Oct 2008
Location: Everywhere And Nowhere
Well they are on top of this.
__________________
iMACAll life is an experiment. The more experiments you make the better.
TWITTER TUMBLR
Michaelgtrusa is offline   0 Reply With Quote
Old Apr 6, 2012, 03:35 AM   #25
macsmurf
macrumors 65816
 
macsmurf's Avatar
 
Join Date: Aug 2007
Quote:
Originally Posted by -LikesMac- View Post
I went back to the main page after reading the article about 600K Macs being infected. Wow, Apple's upped their game here against this kind of thing.
Java 6 update 31 for Windows and Linux was released february 27 in reponse to this vulnerability. Apple releases it April 3 - and they apparently still messed it up.

If that's upping their game I'd hate to see their previous game.
macsmurf is offline   -4 Reply With Quote

Reply
MacRumors Forums > News and Article Discussion > MacRumors.com News Discussion

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
Apple Releases New Java 6 Updates With Enhanced Security, Uninstalls Apple-Provided Java Applet Plug-in MacRumors Mac Blog Discussion 49 Oct 22, 2013 10:58 AM
Apple Releases Java Update to Fix New Zero-Day Vulnerability MacRumors Mac Blog Discussion 21 Mar 5, 2013 05:36 PM
Oracle Releases Java 7 Update 13 to Address Security Issues, Reenable Web Plug-in on OS X MacRumors MacRumors.com News Discussion 134 Feb 17, 2013 01:40 PM
Apple Releases Updates Java for OS X 10.6, 10.7, and 10.8 MacRumors Mac Blog Discussion 34 Sep 26, 2012 11:36 PM
Oracle releases Java 7 update 6, bringing full OS X support for the first time wrldwzrd89 Apple, Industry and Internet Discussion 1 Aug 14, 2012 06:46 PM

Forum Jump

All times are GMT -5. The time now is 02:42 AM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC