Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012999)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012999 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properl...

AZL-70097 CVE-2025-40205 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

CVE-2025-40205 btrfs: avoid potential out-of-bounds in btrfs_encode_fh()

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

CVE-2025-40205

CVE-2025-40205 affects the Linux kernel Btrfs code (btrfs_encode_fh). The issue: btrfs_encode_fh() can write beyond the allocated fh payload when a parent exists and the parent root_id differs from the inode root, because it may return BTRFS_FID_SIZE_CONNECTABLE_ROOT (40 bytes) even though the ca...