Update Java to Java 10.7 on MacOS X 10.7 does not work

Question

Level 2

279 points

Update Java to Java 10.7 on MacOS X 10.7 does not work

Safari (6.0.2) on 10.7 Lion has started suddenly to refuse to run Java. I get a blocked plug-in message and the request to download and install a Java upload.

Even after a install of the downloaded Java 7 Update 10.pkg from Oracle and a reboot, java is still at 1.6

hermione:~ gerben$ java -version

java version "1.6.0_37"

And there is no Java 1.7 installed

hermione:~ gerben$ ls /System/Library/Frameworks/JavaVM.framework/Versions/

1.4 1.4.2 1.5 1.5.0 1.6 1.6.0 A Current CurrentJDK

What must I do to fix this?

Posted on Jan 11, 2013 6:34 AM

Reply

Answer 1

Gerben Wierda Author

Level 2

279 points

Jan 11, 2013 7:15 AM in response to Gerben Wierda

Safari Help->Installed Plugins shows 10.7 installed:

application/x-java-applet Basic Java Applets javaapplet

application/x-java-applet;deploy=10.10.2 Java applet

application/x-java-applet;javafx=2.2.4 Java applet

application/x-java-applet;jpi-version=1.7.0_10 Java applet

application/x-java-applet;version=1.1 Java applet

application/x-java-applet;version=1.1.1 Java applet

application/x-java-applet;version=1.1.2 Java applet

application/x-java-applet;version=1.1.3 Java applet

application/x-java-applet;version=1.2 Java applet

application/x-java-applet;version=1.2.1 Java applet

application/x-java-applet;version=1.2.2 Java applet

application/x-java-applet;version=1.3 Java applet

application/x-java-applet;version=1.3.1 Java applet

application/x-java-applet;version=1.4 Java applet

application/x-java-applet;version=1.4.1 Java applet

application/x-java-applet;version=1.4.2 Java applet

application/x-java-applet;version=1.5 Java applet

application/x-java-applet;version=1.6 Java applet

application/x-java-applet;version=1.7 Java applet

application/x-java-vm Java applet

application/x-java-vm-npruntime Java applet

Reply

Answer 2

Gerben Wierda Author

Level 2

279 points

Jan 11, 2013 1:51 PM in response to Gerben Wierda

Apple blocked the Java plugin using the Xprotect mechanism because of a huge security leak.

Reply

Answer 3

Dimka!

Level 1

20 points

Jan 12, 2013 4:28 AM in response to Gerben Wierda

I have the same problem.

How can I unblock the Java plugin to use Oracle Java?

Reply

Answer 4

Gerben Wierda Author

Level 2

279 points

Jan 13, 2013 1:14 AM in response to Dimka!

You can edit XProtect.meta.plist which is at /System/Library/CoreServices/CoreTypes.bundle/Contents/Resources/XProtect.meta. plist. Change 1.7.10.19 to 1.7.10.18.

You are strongly advised not to do so if you browse the internet far and wide. But in a scenario where you for instance the need the Java plugin to access your office (work at home setup using VPN for instance) you can turn off the Java plugin block this way. If you do that, only use your browser for that work from home scenario, nothing else. Or set it back to the proper value of 1.7.10.19 after you are done working from home.

You need root privileges to edit this file. If you don't know how to do that and edit it, it's better left alone until Oracle has fixed Java and released 1.7.10.19

Reply

Answer 5

Dimka!

Level 1

20 points

Jan 13, 2013 4:29 AM in response to Gerben Wierda

Ok. I found what the problem too. I know what is xprotect and why xprotect blocks oracle java now.

I moved back to apple's java.

Thanks.

Reply

Answer 6

Gerben Wierda Author

Level 2

279 points

Jan 13, 2013 4:52 AM in response to Dimka!

Moving back to Apple's Java doesn't help as it is as vulnerable for this exploit. Older versions of Java are as vulnerable according to the US government:

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0422

You're still better off with the latest Java. If you really need it, enable it in XProtect, disable it in Safari and only enable it in Safari when you do that necessary stuff.

Reply

Answer 7

baltwo

Level 9

62,362 points

Jan 13, 2013 3:57 PM in response to Gerben Wierda

AFAICT, this only applies to The MBeanInstantiator in Oracle Java Runtime Environment (JRE) 1.7 in Java 7 Update 10 and earlier, not Java 6 or earlier. In any case, Oracle's released update 7u11 which fixes the exploit.

Reply

Answer 8

Gerben Wierda Author

Level 2

279 points

Jan 14, 2013 8:02 AM in response to baltwo

Correct. Yesterday, the NIST entry still showed older versions of Java. Today it only shows 10.7

Reply

Answer 9

gilhouse

Level 1

4 points

Oct 22, 2013 12:57 PM in response to Gerben Wierda

Here it is 10 months later and I still have the problem with Java applets not loading for websites like keepvid.com and savevid.com. It has the same problem with all three browsers I commonly use: Safari, firefox and chrome.

I did find a workaround -- the browser Torch downloads youtube videos seamlessly.

Reply

application/x-java-applet	Basic Java Applets	javaapplet
application/x-java-applet;deploy=10.10.2	Java applet
application/x-java-applet;javafx=2.2.4	Java applet
application/x-java-applet;jpi-version=1.7.0_10	Java applet
application/x-java-applet;version=1.1	Java applet
application/x-java-applet;version=1.1.1	Java applet
application/x-java-applet;version=1.1.2	Java applet
application/x-java-applet;version=1.1.3	Java applet
application/x-java-applet;version=1.2	Java applet
application/x-java-applet;version=1.2.1	Java applet
application/x-java-applet;version=1.2.2	Java applet
application/x-java-applet;version=1.3	Java applet
application/x-java-applet;version=1.3.1	Java applet
application/x-java-applet;version=1.4	Java applet
application/x-java-applet;version=1.4.1	Java applet
application/x-java-applet;version=1.4.2	Java applet
application/x-java-applet;version=1.5	Java applet
application/x-java-applet;version=1.6	Java applet
application/x-java-applet;version=1.7	Java applet
application/x-java-vm	Java applet
application/x-java-vm-npruntime	Java applet