CVE-2026-53007

In the Linux kernel, the following vulnerability has been resolved:

ice: fix potential NULL pointer deref in error path of ice set ringparam()

ice set ringparam nullifies tstamp ring of temporary tx rings, without clearing ICE TX RING FLAGS TXTIME bit. When ICE TX RING FLAGS TXTIME is set and the subsequent ice setup tx ring() call fails, a NULL pointer dereference could happen in the unwinding sequence:

ice clean tx ring() -> ice is txtime cfg() == true (ICE TX RING FLAGS TXTIME is set) -> ice free tx tstamp ring() -> ice free tstamp ring() -> tstamp ring->desc (NULL deref)

Clear ICE TX RING FLAGS TXTIME bit to avoid the potential issue.

Note that this potential issue is found by manual code review. Compile test only since unfortunately I don't have E830 devices.