Apple drops Java after experts warn Mac users on its security

BOSTON Fri Oct 19, 2012 4:34pm EDT

The logo of Apple is seen on a product displayed at a store in Seoul August 24, 2012. REUTERS/Lee Jae-Won

The logo of Apple is seen on a product displayed at a store in Seoul August 24, 2012.

Credit: Reuters/Lee Jae-Won

Related Topics

BOSTON (Reuters) - Apple Inc is removing old versions of Oracle Corp's Java software from Internet browsers on the computers of its customers when they install the latest update to its Mac operating system.

Apple, which has previously included Java with installations of Mac OS X, announced the move on its support site. It said that customers need to obtain Java directly from Oracle if they want to access web content written the widely used programming language. (support.apple.com/kb/DL1572)

Apple did not provide a reason for the change and both companies declined to comment.

Java is a computer language that enables programmers to write one set of code to run on virtually any type of machine. It is widely used on the Internet so that Web developers can make their sites accessible from multiple browsers running on Macs or Microsoft Windows PCs.

Two years ago both companies said they had agreed that Apple would one day stop providing Java software to Mac customers and that would Oracle to take on that responsibility. They did not provide a date for that transition.

Apple is implementing that change in the wake of a Java security scare that prompted some security experts to caution computer users to only use Java on an as-needed basis.

Security experts in Europe discovered Java bugs in late August that hackers had exploited to launch attacks. It took Oracle several days to release an update to Java to correct those flaws.

Adam Gowdiak, a researcher with Polish security firm Security Explorations, said on Friday that he has since found two new security bugs in Java that continue to make computers vulnerable to attack.

Gowdiak said that removing Java from Mac browsers reduces the risks of an attack.

(Reporting By Jim Finkle; Editing by Richard Chang)

FILED UNDER:
We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see http://blogs.reuters.com/fulldisclosure/2010/09/27/toward-a-more-thoughtful-conversation-on-stories/
Comments (2)
Neurochuck wrote:
No comments after quite a while, maybe because it’s not a big deal.
Microsoft never included Sun/Oracle Java in its OS installs, but did for a while include a spoiler variant.
The security flaws are/have been few, and quickly addressed by Oracle, which along with IBM, has a big stake in Java in the enterprise/business market – so highly capable responsiveness.
Android apps run on a different implementation of Java.
On a home PC less need or use of Java – HTML5, Javascript and Apple specific apps do most things, and a bit of a cleanup of neglected outdated versions is not a bad thing.

Oct 21, 2012 6:36am EDT  --  Report as abuse
jakeskatt wrote:
No JAVA no vulnerabilities from JAVA.

JAVA is like having your front door unlocked for thieves. Oracle keeps trying to change the lock but thieves keep finding a way to open the door.

Good riddance to JAVA – just like the other vulnerability opener – Flash.

Oct 21, 2012 6:01pm EDT  --  Report as abuse
This discussion is now closed. We welcome comments on our articles for a limited period after their publication.