Two out-of-bounds memory issues were identified that could lead to Denial Of Service (DoS), allowing an attacker to crash the Unity process, and potentially the game or application.

Yes. Games and applications built with the Unity Editor using the Unity Multiplayer and Networking UNET feature are affected.

Only Unity UNET is affected by the identified vulnerabilities.

It depends on the specific version of the Unity Editor that you are using. Most customers will be able to update to the patched versions without needing to rebuild their bundles, but some customers may find that asset importers have been updated between the version they are currently using and the patch for that dot-release. For those customers, asset bundle rebuilding may be necessary.

All supported platforms are affected.

All platform versions are affected.

All versions of the Unity Editor are affected.

We have released a patch for all officially supported versions of the Unity Editor up to 2020.2 Alpha. All future versions will contain the update as well.

Unity will be releasing a single patch to each of the most current versions, i.e., last update of the Unity Editor.

Our focus right now is on addressing the identified vulnerabilities in all officially supported versions up to 2020.2 Alpha. We are not planning to release a patch for other versions of Unity.

Our focus right now is on addressing the identified vulnerabilities in all officially supported versions up to 2020.2 Alpha. We are not planning to release a patch for other versions of Unity

You may need to rebuild your bundles if any assets are re-imported when you first open your project in the patched version of the Unity Editor.