SB20260625158 - Race condition in Linux kernel intel ice driver
Published: June 25, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Race condition (CVE-ID: CVE-2026-53008)
CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to a race condition leading to a NULL pointer dereference in the ice TX timestamp ring handling when processing transmit operations concurrently with TX timestamp ring cleanup. A local user can trigger concurrent ring cleanup and transmit mapping operations to cause a denial of service.
The issue occurs because one CPU can observe the TXTIME flag as set after the timestamp ring pointer has already been cleared on another CPU.
Remediation
Install update from vendor's website.