Follow the Twitter stream about #security today and you get the sense that Apple’s Java update was very much due, perhaps overdue.
The update, according to Help Net Securty provides the following:
Java for Mac OS X 10.5 Update 4 delivers improved reliability, security, and compatibility for Java SE 6, J2SE 5.0 and J2SE 1.4.2 on Mac OS X v10.5.
This release updates Java SE 6 to version 1.6.0_13, J2SE 5.0 to version 1.5.0_19, and J2SE 1.4.2 to 1.4.2_21. It is only for Mac OS X v10.5.7 and later versions of Mac OS X v10.5.
This release of J2SE 5.0 and J2SE 1.4.2 supports all Intel- and PowerPC-based Macs. Java SE 6 is available on 64-bit, Intel-based Macs only.
Apple released the following update for download.
Apple rarely gets criticized for its security holes. But on Twitter today, you could sense the frustration with their slow response:
The criticism started bubbling more than a week ago on a Get Satisfaction support board:
Why does it take so long for Apple to release their own in-house version of Java machine for OS X? It takes Apple 71 – 356 days to issue updates after they are available from Sun. You seem to be putting OS X users at risk. Why don’t you simply use Sun’s Java?
Really. Why did this take Apple so long to do?
Perhaps the malware epidemic is having its impacts after all.