h3. Issue Summary
Since the release of JRASERVER-72339 , Jira 8.19.X ships with OpenJDK 11 however the bundled AdoptOpen JDK 11.0.11 is affected by CVE-2021-2388 :
h3. Steps to Reproduce
h3. Expected Results
Bundled JAVA version should not be affected by CVE-2021-2388
h3. Actual Results
Bundled JAVA version is affected by CVE-2021-2388
h3. Workaround
If you are using the embedded JAVA, change the JAVA version following the steps here:
Upgrade Java to the latest stable version of JDK ( 11.0.12+7 )