Ben Smyth reported this on the security-dev mailing list https://mail.openjdk.org/pipermail/security-dev/2022-June/031003.html:

We have

    // extensions defined in RFC 7250
    CLIENT_CERT_TYPE        (0x0013, "padding"),
    SERVER_CERT_TYPE        (0x0014, "server_certificate_type"),

    // extensions defined in RFC 7685
    PADDING                 (0x0015, "client_certificate_type"),

We should have

    // extensions defined in RFC 7250
    CLIENT_CERT_TYPE        (0x0013, "client_certificate_type"),
    SERVER_CERT_TYPE        (0x0014, "server_certificate_type"),

    // extensions defined in RFC 7685
    PADDING                 (0x0015, "padding"),


This issue has been fixed in Java 16 and above but is still an issue in lower versions like Java 8 and Java 11.