You’ve likely already heard of the Java security scandal, which was something Oracle looked to fix quickly with an update to the software. Even though Oracle says it has patched the issue, some entities disagree. The latest to add its name to the list of dissenters seems to be Apple, as it has decided to block the Java 7 browser plug-in, even after the update was delivered by Oracle.
According to MacGeneration and this thread on the Apple Support Communities site, Apple has blocked this latest version of Java using its Xprotect software. Apple uses Xprotect to keep malware out, and this is the same software it used to block Java earlier in the month. Just as it did before, Apple has made Xprotect block a version of Java that doesn’t yet exist, meaning all earlier versions (including the current one) are blocked as well.
Apple isn’t the only one taking issue with Oracle’s claim that the security concerns have been addressed. The Department of Homeland Security is still recommending that consumers refrain from using Java after the update, saying that all of the security flaws have not yet been fixed. The flaw could potentially allow unsigned applets to run without permission, which in turn means that some of the more undesirable people of the world could potentially take control of your computer.
So, with the Department of Homeland Security still warning against using Java, it may not be such a bad thing that Apple has restricted access to the browser plug-in. This will naturally prove to be headache for a lot of different Mac users considering that Java is everywhere these days, but until Oracle provides another update, there doesn’t seem to be much that can be done. Stay tuned, because we’ll probably be hearing more about this soon.