What is CVE-2026-43477?

CVE-2026-43477 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 6.16 onward and patched in 6.18.20, 6.19.9 and 7.0. CVE-2026-43477 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2026-43477?

CVE-2026-43477 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2026-43477?

Yes, CVE-2026-43477 has been patched. Fixed versions include 6.18.20, 6.19.9 and 7.0. If you are running Linux kernel 6.16 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2026-43477 actively exploited?

CVE-2026-43477 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2026-43477

In the Linux kernel, the following vulnerability has been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL Apparently ICL may hang with an MCE if we write TRANS_VRR_VMAX/FLIPLINE before enabling TRANS_DDI_FUNC_CTL. Personally I was only able to reproduce a hang (on an Dell XPS 7390 2-in-1) with an external display connected via a dock using a dodgy type-C cable that made the link training fail. After the failed link training the machine would hang. TGL seemed immune to the problem for whatever reason. BSpec does tell us to configure VRR after enabling TRANS_DDI_FUNC_CTL as well. The DMC firmware also does the VRR restore in two stages: - first stage seems to be unconditional and includes TRANS_VRR_CTL and a few other VRR registers, among other things - second stage is conditional on the DDI being enabled, and includes TRANS_DDI_FUNC_CTL and TRANS_VRR_VMAX/VMIN/FLIPLINE, among other things So let's reorder the steps to match to avoid the hang, and toss in an extra WARN to make sure we don't screw this up later. BSpec: 22243 (cherry picked from commit 93f3a267c3dd4d811b224bb9e179a10d81456a74)

Package Linux Kernel

Published 2026-05-13

Last modified 2026-05-22

Patch available

Yes

Affected versions

Linux kernel versions 6.16 and later are affected. Fixed in 6.18.20, 6.19.9, 7.0 and their respective stable series.

Affected from

≥ 6.16

Fixed in

✓ 6.18.20 6.18.x ✓ 6.19.9 6.19.x ✓ 7.0

References

The following references provide additional information about CVE-2026-43477 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/237aab549676288d9255bb8dcc284738e56eaa31
Patch
Kernel patch commit
https://git.kernel.org/stable/c/8a7d29b8bda144d44e61df1b2705b1d4378f4e44
Patch
Kernel patch commit
https://git.kernel.org/stable/c/bf9e3b6ffd76da38dd4961c65d80571b25bf10a5
Patch

Frequently asked questions

What is CVE-2026-43477?

CVE-2026-43477 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 6.16 onward and has been patched in 6.18.20, 6.19.9 and 7.0. CVE-2026-43477 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2026-43477?

Yes — CVE-2026-43477 has been patched. Fixed versions include 6.18.20, 6.19.9 and 7.0. If you are running Linux kernel 6.16 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2026-43477 actively exploited?

No — CVE-2026-43477 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.