Home > Mac/PC

Mac/PC Archive

Oracle、Java SE 7 Update 51 (Java SE 7u51) リリース

Oracleは1月14日(現地時間)、予告されていた2014年1月クリティカルパッチアップデート(CPU)による一斉バージョンアップを行い、「Java SE 7 Update51 (7u51)」などを公開しました。

Windows、Mac (Lion/Mountain Lion) 、Linux、Solaris版が用意されています。

 →Java SE Downloads

Mac版ではOS X Lion (10.7.3〜) 以降をサポートし、自動アップデート機能搭載。

■Java SE 7 Update 51 Changes
– Changes to Security Slider (see this blog for additional information and the Java Control Panel documentation):
– Block Self-Signed and Unsigned applets on High Security Setting
– Require Permissions Attribute for High Security Setting
– Warn users of missing Permissions Attributes for Medium Security Setting
– Exception Site List: The Exception Site List feature allows end users to run Java applets and Java Web Start applications that do not meet the latest security requirements. Rich Internet Applications that are hosted on a site in the exception site list are allowed to run with the applicable security prompts. (See this blog for additional information and the Exception Site List documentation).
– Jarsigner updated to encourage timestamping
– Prompt users to clear previously remembered decisions
– Change in Default Socket Permissions
– Change in JAXP Xalan Extension Functions

インストール後、ユーティリティフォルダ内「Java Preferens」アプリから有効/無効化切り替えや優先順位ソートできます。

Java Source – Java SE 7 Update 51 Released
The Java Tutorials Blog – JDK 7u51 and JavaFX 2.2.51 Documentation Updates
日本オラクル – Critical Patch UpdatesとSecurity Alerts
IPA – Oracle Java の脆弱性対策について(CVE-2014-0410等)

  • コメント (Close): 0
  • トラックバック (Close): 0

Adobe、Flash Player/AIRやReader/Acrobatのセキュリティアップデート公開 (APSB14-01、APSB14-02)

Adobe Systemsは1月14日(現地時間)、予告されていたAdobe Reader/Adobe Acrobatについて、およびFlash PlayerAIRに関するセキュリティ情報を公開、アップデート版をリリースしました。

APSB14-01 – Security Updates available for Adobe Reader and Acrobat
– Adobe Reader XI (11.0.05) and earlier 11.x versions for Windows and Macintosh
– Adobe Reader X (10.1.8) and earlier 10.x versions for Windows and Macintosh
– Adobe Acrobat XI (11.0.05) and earlier 11.x versions for Windows and Macintosh
– Adobe Acrobat X (10.1.8) and earlier 10.x versions for Windows and Macintosh

APSB14-02 – Security updates available for Adobe Flash Player
– Adobe Flash Player 11.9.900.170 and earlier versions for Windows and Macintosh
– Adobe Flash Player and earlier versions for Linux
– Adobe AIR and earlier versions for Windows and Macintosh
– Adobe AIR and earlier versions for Android
– Adobe AIR SDK and earlier versions
– Adobe AIR SDK & Compiler and earlier versions

Adobe Reader/Acrobatの優先度は「1」。
Windows/Mac向けFlash Playerの優先度は「1」となっていて、直ちに(例えば72時間以内)適用することを推奨。


Adobe Flash Player: (バージョンチェック) Windows/Mac Google Chrome内蔵版 (Windows/Mac/Linux) Linux

Adobe AIR: Windows/Mac/Android

Adobe Reader/Acrobat:
 XI 11.0.06 Windows/Mac
 X 10.1.9 Windows/Mac

Adobe PSIRT Blog – Adobe Security Bulletins Posted
Adobe Reader Blog – Latest Adobe Reader and Acrobat Quarterly Updates Now Available
Adobe – Flash Player バージョン確認
アドビ – Flash Player Help – Google Chrome での使用に関するよくある質問(Flash Player)
IPA – Adobe Reader および Acrobat の脆弱性対策について(APSB14-01)(CVE-2014-0493等)
IPA – Adobe Flash Player の脆弱性対策について(APSB14-02)(CVE-2014-0491等)

  • コメント (Close): 0
  • トラックバック (Close): 0

Google、Windows/Mac/Linux向け「Google Chrome 32」安定版リリース

Google Chrome

Google Webブラウザーの「Google Chrome 32」安定版 32.0.1700.76 (Windows/Chrome Frame)、32.0.1700.77 (Mac/Linux) がリリースされました。
※内蔵Flash Playerが にアップデートされています。


  • Tab indicators for sound, webcam and casting
  • A different look for Win8 Metro mode
  • Automatically blocking malware files
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

詳しくは Chromium security pageをご覧ください。

■Security Fixes and Rewards

  • [$1000][249502] High CVE-2013-6646: Use-after-free in web workers. Credit to Collin Payne.
  • [$1000][326854] High CVE-2013-6641: Use-after-free related to forms. Credit to Atte Kettunen of OUSPG.
  • [$1000][324969] High CVE-2013-6642: Address bar spoofing in Chrome for Android. Credit to lpilorz.
  • [$5000][321940] High CVE-2013-6643: Unprompted sync with an attacker’s Google account. Credit to Joao Lucas Melo Brasio.
  • [318791] Medium CVE-2013-6645 Use-after-free related to speech input elements. Credit to Khalil Zhani.

As usual, our ongoing internal security work responsible for a wide range of fixes:

  • [333036] CVE-2013-6644: Various fixes from internal audits, fuzzing and other initiatives.

■Known issues

  • Keyboard input is not working correctly in Windows 8 metro mode. This may impact IMEs, RTL layouts. (164964)
  • Trackpad users may not be able to scroll horizontally. (332797)
  • Drag and drop files into Chrome may not work properly. (332579)
  • Closing Tab by pressing the ‘x’ button may not work. (332334)
  • On some machines the browser UI can flicker when resizing the window. (305432)
  • Opening another profile using the profile icon switcher in Win8 mode results in the new window being opened on the Desktop instead of in Win8 mode. (325919)
  • Chrome conflicts with Norton Software including Identity Safe Toolbar. (327110)
  • Windows 8 mode is not yet supported on HiDPI devices and Windows 8 mode is not supported on machines without hardware acceleration (160457 and 332503).
  • Using Nvidia’s Stereoscopic 3D feature turns Chrome pink. Users should disable this feature in Nvidia’s control panel to restore normal functionality(319115).

Google Chrome Blog – Everyone can now track down noisy tabs
Google Chrome Release – Stable Channel Update

  • コメント (Close): 0
  • トラックバック (Close): 0

ホーム > Mac/PC





Get WPtouch Pro

Return to page top