openjdk-jre is a free and open-source implementation of the Java Platform, Standard Edition (Java SE).
Affected versions of this package are vulnerable to integer overflow via the
SunGraphics2D class in the 2D component in OpenJDK. The check of offset and length values passed to
drawBytes() methods could be bypassed, leading to excessive memory allocation or attempt to access buffer out of bounds.
openjdk-jre to version 7.0.231, 8.0.221, 11.0.5, 13.0.1 or higher.