Red Hat Security Advisory: OpenShift Container Platform 4.12.76 security and extras update
Red Hat OpenShift Container Platform 4. 12. 76 includes a security update addressing a vulnerability in the Jinja2 template engine (CVE-2025-27516). The issue involves a sandbox breakout via the attr filter selecting the format method. This vulnerability affects on-premise or private cloud deployments of OpenShift Container Platform 4. 12. Red Hat has released updated RPM packages and container images to fix this issue and advises all users to upgrade accordingly.
AI Analysis
Technical Summary
The Red Hat OpenShift Container Platform 4.12.76 update addresses a security vulnerability identified as CVE-2025-27516 in the Jinja2 template engine. The vulnerability allows a sandbox breakout through the attr filter when selecting the format method, potentially enabling unauthorized code execution or other malicious actions within the templating environment. This update includes RPM packages and container images that remediate the issue. Users of OpenShift Container Platform 4.12 are advised to upgrade to these updated packages and images via the appropriate release channels using the OpenShift CLI or web console. Detailed upgrade instructions are provided by Red Hat documentation.
Potential Impact
The vulnerability allows a sandbox breakout in the Jinja2 template engine used within OpenShift Container Platform, which could lead to unauthorized code execution or compromise of the templating environment. Red Hat rates the security impact as Important (high severity). There are no known exploits in the wild at this time. The issue affects multiple architectures and deployment types of OpenShift Container Platform 4.12.
Mitigation Recommendations
Red Hat has released updated RPM packages and container images in OpenShift Container Platform 4.12.76 that fix this vulnerability. All users of OpenShift Container Platform 4.12 should upgrade to these updated packages and images as soon as they are available in their release channels. Upgrades can be performed using the OpenShift CLI (oc) or the web console. Users should follow the official Red Hat documentation for cluster upgrade procedures to fully apply this security update. Patch status is confirmed as available and official.
Red Hat Security Advisory: OpenShift Container Platform 4.12.76 security and extras update
Description
Red Hat OpenShift Container Platform 4. 12. 76 includes a security update addressing a vulnerability in the Jinja2 template engine (CVE-2025-27516). The issue involves a sandbox breakout via the attr filter selecting the format method. This vulnerability affects on-premise or private cloud deployments of OpenShift Container Platform 4. 12. Red Hat has released updated RPM packages and container images to fix this issue and advises all users to upgrade accordingly.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Red Hat OpenShift Container Platform 4.12.76 update addresses a security vulnerability identified as CVE-2025-27516 in the Jinja2 template engine. The vulnerability allows a sandbox breakout through the attr filter when selecting the format method, potentially enabling unauthorized code execution or other malicious actions within the templating environment. This update includes RPM packages and container images that remediate the issue. Users of OpenShift Container Platform 4.12 are advised to upgrade to these updated packages and images via the appropriate release channels using the OpenShift CLI or web console. Detailed upgrade instructions are provided by Red Hat documentation.
Potential Impact
The vulnerability allows a sandbox breakout in the Jinja2 template engine used within OpenShift Container Platform, which could lead to unauthorized code execution or compromise of the templating environment. Red Hat rates the security impact as Important (high severity). There are no known exploits in the wild at this time. The issue affects multiple architectures and deployment types of OpenShift Container Platform 4.12.
Mitigation Recommendations
Red Hat has released updated RPM packages and container images in OpenShift Container Platform 4.12.76 that fix this vulnerability. All users of OpenShift Container Platform 4.12 should upgrade to these updated packages and images as soon as they are available in their release channels. Upgrades can be performed using the OpenShift CLI (oc) or the web console. Users should follow the official Red Hat documentation for cluster upgrade procedures to fully apply this security update. Patch status is confirmed as available and official.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:4408
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a1f4e89e29bf47b5008378d
Added to database: 6/2/2026, 9:43:37 PM
Last enriched: 6/2/2026, 10:18:19 PM
Last updated: 6/3/2026, 5:08:43 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.