This Red Hat security advisory announces the release of OpenShift Container Platform 4.12.87, which includes bug fixes and security updates for several vulnerabilities identified by CVE-2025-22871 and three additional CVEs. The update addresses issues related to container images and RPM packages for the platform. Red Hat rates the security impact of this update as low, despite the advisory's moderate severity classification. The advisory references multiple bug fixes and enhancements and provides links to official errata and release notes for detailed information. Users are encouraged to upgrade their OpenShift clusters using the provided instructions to apply these asynchronous errata updates. No CVSS scores are provided for the individual CVEs, and no known active exploitation has been reported.

The vulnerabilities addressed in this update have been rated by Red Hat Product Security as having a low security impact. There are no known exploits in the wild related to these issues. The update mitigates potential risks by fixing bugs and security issues in container images and RPM packages of OpenShift Container Platform 4.12. Users running affected versions may be exposed to these vulnerabilities until they apply the update.

Red Hat has released updated container images and RPM packages as part of OpenShift Container Platform 4.12.87 to address these vulnerabilities. Users should upgrade to the updated packages and images available in the appropriate release channels. Detailed upgrade instructions are provided in Red Hat's official documentation. Since this is an official fix, applying the update fully mitigates the vulnerabilities. There is no indication that additional mitigation steps are required beyond upgrading.