openjdk-jre is a free and open-source implementation of the Java Platform, Standard Edition (Java SE).
Affected versions of this package are vulnerable to HTTP Response Splitting. The
HttpServer implementation did not restrict the use of
LF characters in values for
HTTP headers, possibly allowing
HTTP response splitting attacks.
openjdk-jre to version 7.0.261, 8.0.251, 11.0.7, 14.0.1 or higher.