Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001231)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001231 advisory. In the flushtmregstothread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001655)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001655 advisory. The x86/fpu Floating Point Unit subsystem in the Linux kernel before 4.13.5, when a processor supports the xsave feature but not the xsaves feature, does not correct...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000727)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000727 advisory. The keyctlreadkey function in security/keys/keyctl.c in the Key Management subcomponent in the Linux kernel before 4.13.5 does not properly consider that a key may b...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002641)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002641 advisory. The x86/fpu Floating Point Unit subsystem in the Linux kernel before 4.13.5, when a processor supports the xsave feature but not the xsaves feature, does not correct...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003048)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003048 advisory. In the flushtmregstothread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged...

CVE-2025-61776 Dependency-Track possibly discloses private NuGet repository credentials to api.nuget.org

Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Prior to version 4.13.5, Dependency-Track may send credentials meant for a private NuGet repository to api.nuget.org via the HTTP Authorization header, and may...

PT-2025-41166

Name of the Vulnerable Software and Affected Versions Dependency-Track versions prior to 4.13.5 Description Dependency-Track is a component analysis platform used for managing software supply chain risk. Versions prior to 4.13.5 may inadvertently transmit credentials intended for a private NuGet...

RHSA-2023:4093 Red Hat Security Advisory: OpenShift Container Platform 4.13.5 security update

Bulletin has no description...

WordPress UDesign theme <= 4.13.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme UDesign versions = 4.13.5...

Linux kernel denial of service vulnerability (CNVD-2018-07889)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in the flushtmregstothread function in arch/powerpc/kernel/ptrace.c in Linux...

CVE-2017-12188

CVE-2017-12188 affects arch/x86/kvm/mmu.c in the Linux kernel up to 4.13.5 where nested virtualization can mis-traverse guest page tables, enabling L1 guests to run arbitrary host code or trigger host denial of service. Connected advisories ( MiracleLinux AXSA-2018-2625, Unity Linux UTSA advisori...

PT-2017-12392 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.13.5 Description: The issue arises when nested virtualisation is used, and the Linux kernel does not properly traverse guest pagetable entries to resolve a guest virtual address. This allows L1 guest OS users t...