I. Apple Patches Java, OS X and Safari 3 Flaws

Apple launched a stack of patches recently fixing at least 18 security vulnerabilities in its implementation of Java for Mac users. This Java update targets to Mac systems running OS X 10.4 (Tiger) and earlier versions. Apple claims that none of the vulnerabilities patched in the Java roll-up are there now in OS X 10.5 (Leopard). However, a fair number of the fixes in the patch batch for OS X also apply to Leopard.

II. Secunia aims to be leading

vulnerability intelligence provider It is Secunia’s ambition to be the leading vulnerability intelligence provider and distributor in the world - second to none. They have detected few of the vulnerability in the Sun Java System Web Proxy Server, These vulnerabilities can be exploited by malicious people to conduct cross-site scripting attacks. A such kind of vulnerability is reported in 4.x versions prior to 4.0.6. It is being illustrated through an example: Input passed via unspecified parameters within the View Error Log functionality is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site. Solution is just to update Sun Java System Web Proxy Server 4.x to version 4.0.6.

Another vulnerability is reported in 4.x versions prior to 4.0.6 and 3.x versions prior to 3.6 SP11.
It is illustrated with an example:
Input passed via unspecified parameters within the View URL Database functionality is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.
Solution is just to update Sun Java System Web Proxy Server 3.x to version 3.6 Service Pack 11.

III. JetBrains added Ruby, Groovy to Java IDE

Now the plug-ins for dynamic languages are available. Recently JetBrains has unveiled the plug-ins that allows the users of its IntelliJ Idea IDE to accommodate Groovy and Ruby programming. The IDE highly supports java development, is on the way of expansion to accommodate newly popular dynamic languages. To meet the purpose, JetBrains is offering its JetGroovy Plugin 1.0 for Groovy and Grails framework developers. It is also available for Ruby development as the Ruby Plugin 1.0.

IV. Spring Integration: a central service and message bus

Recently, SpringSource announced the creation of Spring Integration, a project aimed to provide a central service and message bus inside the Spring Framework. This is built on the Spring’s already-impressive capabilities for providing simple models for using services. Spring Integration is a logical next step for Spring, as