In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]md: raid1: fix potential OOB in raid1_remove_disk()[EOL][EOL]If rddev->raid_disk is greater than mddev->raid_disks, there will be[EOL]an out-of-bounds in raid1_remove_disk(). We have already found[EOL]similar reports as follows:[EOL][EOL]1) commit d17f744e883b ("md-raid10: fix KASAN warning")[EOL]2) commit 1ebc2cec0b7d ("dm raid: fix KASAN warning in raid5_remove_disk")[EOL][EOL]Fix this bug by checking whether the "number" variable is[EOL]valid.
