openjdk-jre is a free and open-source implementation of the Java Platform, Standard Edition (Java SE).
Affected versions of this package are vulnerable to Man-in-the-Middle (MitM). It does not correctly handle
CertificateVerify TLS handshake message received unexpectedly. An attacker can use this flaw to affect confidentiality or integrity of a TLS connection.
openjdk-jre to version 7.0.251, 8.0.241, 11.0.6, 13.0.2 or higher.