HOMEVULNERABILITIESCVE-2026-43477
NONE

CVE-2026-43477

Published: May 13, 2026· Updated: May 13, 2026

EPSS:0.02%probability of exploitation in 30 daysPercentile:4.1th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL

Apparently ICL may hang with an MCE if we write TRANS_VRR_VMAX/FLIPLINE

before enabling TRANS_DDI_FUNC_CTL.

Personally I was only able to reproduce a hang (on an Dell XPS 7390

2-in-1) with an external display connected via a dock using a dodgy

type-C cable that made the link training fail. After the failed

link training the machine would hang. TGL seemed immune to the

problem for whatever reason.

BSpec does tell us to configure VRR after enabling TRANS_DDI_FUNC_CTL

as well. The DMC firmware also does the VRR restore in two stages:

- first stage seems to be unconditional and includes TRANS_VRR_CTL

and a few other VRR registers, among other things

- second stage is conditional on the DDI being enabled,

and includes TRANS_DDI_FUNC_CTL and TRANS_VRR_VMAX/VMIN/FLIPLINE,

among other things

So let's reorder the steps to match to avoid the hang, and

toss in an extra WARN to make sure we don't screw this up later.

BSpec: 22243

(cherry picked from commit 93f3a267c3dd4d811b224bb9e179a10d81456a74)

NVD Source

Technical Analysis

CVE-2026-43477 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
LinuxDell
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (3)

Quick Facts

CVE IDCVE-2026-43477
SeverityNONE
CISA KEVNo
EPSS (30d)0.02%
PublishedMay 13, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-43477 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.