Vulnerability Type: Array-index-out-of-bounds Affected Component: subsystem's driver Issue Description: - During device removal ( ), when an expander is in use, UBSAN (Undefined Behavior Sanitizer) reports an array out-of-bounds error. - Specific error location and details: - - - The root cause is that for directly attached devices, contains the local physical ID; however, for devices connected via an expander, contains the remote physical ID, not the local one. - For example, if has 8 physical ports, and one of them connects to an expander, the remote PhyID under that port may exceed the range of , leading to an out-of-bounds access. - The array only contains the HBA’s physical ports and does not include expander’s physical ports. Thus, using as an index to access this array for devices behind an expander is incorrect. Resolution: - The fix ensures that is cleared only for directly connected devices. Related Commit: - Fixes upstream issue: , corresponding commit: . This commit includes a detailed explanation of the root cause. Review and Testing Records: - The patch has undergone multiple rounds of review and testing on , and was ultimately signed off by key team members for release.