An openjdk-8 security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address several vulnerabilities that may result in bypass of sandbox restrictions or denial of service.

ELA-992-1 openjdk-8 security update

Package : openjdk-8
Version : 8u392-ga-1~deb8u1 (jessie), 8u392-ga-1~deb9u1 (stretch)

Related CVEs :
CVE-2023-22067
CVE-2023-22081

Several vulnerabilities have been discovered in the OpenJDK Java runtime,
which may result in authentication bypass, information disclosure or denial
of service.

ELA-992-1 openjdk-8 security update