Vulnerability Key Information Vulnerability Type: Array Index Out of Bounds Affected Component: subsystem, specifically the driver ( ) Issue Manifestation: - UBSAN (Undefined Behavior Sanitizer) reports an array index out of bounds at , where index exceeds the length of type . - Occurs when a device is used in with an . Root Cause Analysis: - For directly connected devices, contains the local ID. - For devices connected via an , contains the remote ID, not the local ID. - The array contains only the HBA's s, not the 's s. Thus, accessing using is incorrect. Mitigation: - Only clear for directly connected devices. Related Commits: - Fix Commit: f7b705c238d1 ("scsi: pm80xx: Set phy_attached to zero when device is gone") - Upstream Commit: 251be2f6037fb7ab399f68cd7428ff274133d693 ("scsi: pm80xx: Set phy_attached to zero when device is gone") Reviewers and Testers: - Review: Igor Pylypiv, Niklas Cassel, Damien Le Moal, Martin K. Petersen, Sasha Levin - Test: Damien Le Moal