BUG: KFENCE: use-after-free read in _nv000177kms [nvidia_modeset]

Tekstryder · March 2, 2025, 10:00pm

This is a new bug first seen with the 570.124.04 Production Branch driver release.

I’ve about 30 instances over the past few days,.

Mar 02 16:47:17 kernel: ==================================================================
Mar 02 16:47:17 kernel: BUG: KFENCE: use-after-free read in _nv000177kms+0x439/0x2a10 [nvidia_modeset]
Mar 02 16:47:17 kernel: Use-after-free read at 0x00000000e7c09e3f (in kfence-#113):
Mar 02 16:47:17 kernel:  _nv000177kms+0x439/0x2a10 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv002879kms+0x663/0x9c0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv000392kms+0x1e1/0x400 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv002878kms+0xf1a/0x11e0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv002988kms+0x79c/0xd30 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvkms_ioctl_from_kapi_try_pmlock+0x64/0xb0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv000023kms+0x56b/0xbc0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nv_drm_atomic_apply_modeset_config+0x4bc/0x810 [nvidia_drm]
Mar 02 16:47:17 kernel:  nv_drm_atomic_commit+0x18f/0x490 [nvidia_drm]
Mar 02 16:47:17 kernel:  drm_mode_atomic_ioctl+0xa69/0xcb0
Mar 02 16:47:17 kernel:  drm_ioctl_kernel+0xad/0x100
Mar 02 16:47:17 kernel:  drm_ioctl+0x277/0x4e0
Mar 02 16:47:17 kernel:  __x64_sys_ioctl+0x94/0xc0
Mar 02 16:47:17 kernel:  do_syscall_64+0x82/0x190
Mar 02 16:47:17 kernel:  entry_SYSCALL_64_after_hwframe+0x76/0x7e
Mar 02 16:47:17 kernel: 
Mar 02 16:47:17 kernel: kfence-#113: 0x000000003756a051-0x00000000be2c3ddd, size=328, cache=kmalloc-512
Mar 02 16:47:17 kernel: allocated by task 1220 on cpu 16 at 16213.163360s (0.425901s ago):
Mar 02 16:47:17 kernel:  nvkms_alloc+0x50/0xa0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv003020kms+0x22/0x40 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv002842kms+0x266/0x740 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv000719kms+0x40/0x60 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvkms_ioctl_from_kapi+0x73/0xe0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv000096kms+0x19d/0x240 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nv_drm_internal_framebuffer_create+0x270/0x400 [nvidia_drm]
Mar 02 16:47:17 kernel:  nv_drm_framebuffer_create+0x99/0xc0 [nvidia_drm]
Mar 02 16:47:17 kernel:  drm_internal_framebuffer_create+0x3e2/0x570
Mar 02 16:47:17 kernel:  drm_mode_addfb2+0x42/0xf0
Mar 02 16:47:17 kernel:  drm_ioctl_kernel+0xad/0x100
Mar 02 16:47:17 kernel:  drm_ioctl+0x277/0x4e0
Mar 02 16:47:17 kernel:  __x64_sys_ioctl+0x94/0xc0
Mar 02 16:47:17 kernel:  do_syscall_64+0x82/0x190
Mar 02 16:47:17 kernel:  entry_SYSCALL_64_after_hwframe+0x76/0x7e
Mar 02 16:47:17 kernel: 
Mar 02 16:47:17 kernel: freed by task 1220 on cpu 14 at 16213.185042s (0.404316s ago):
Mar 02 16:47:17 kernel:  _nv000801kms+0x49/0x60 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nvkms_ioctl_from_kapi+0x73/0xe0 [nvidia_modeset]
Mar 02 16:47:17 kernel:  _nv000110kms+0x4b/0x60 [nvidia_modeset]
Mar 02 16:47:17 kernel:  nv_drm_framebuffer_destroy+0x3b/0x50 [nvidia_drm]
Mar 02 16:47:17 kernel:  drm_mode_closefb_ioctl+0x6b/0x90
Mar 02 16:47:17 kernel:  drm_ioctl_kernel+0xad/0x100
Mar 02 16:47:17 kernel:  drm_ioctl+0x277/0x4e0
Mar 02 16:47:17 kernel:  __x64_sys_ioctl+0x94/0xc0
Mar 02 16:47:17 kernel:  do_syscall_64+0x82/0x190
Mar 02 16:47:17 kernel:  entry_SYSCALL_64_after_hwframe+0x76/0x7e
Mar 02 16:47:17 kernel: 
Mar 02 16:47:17 kernel: CPU: 4 UID: 1000 PID: 1250 Comm: KMS thread Tainted: P           OE      6.13.5-1-arch1 #1 d667fe2c15e9cb1c797b8fe1d4e1b79a4d106a8e
Mar 02 16:47:17 kernel: Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE, [E]=UNSIGNED_MODULE
Mar 02 16:47:17 kernel: Hardware name: Micro-Star International Co., Ltd. MS-7D31/MPG Z690 EDGE WIFI DDR4 (MS-7D31), BIOS 1.J0 08/13/2024
Mar 02 16:47:17 kernel: ==================================================================

Please find attached bug report:

nvidia-bug-report.log (15.7 MB)

willymdv · March 9, 2025, 5:04pm

Same issue here on fresh OS install.

> [  195.634011] ==================================================================
> [  195.634018] BUG: KFENCE: use-after-free read in _nv000177kms+0x439/0x2a10 [nvidia_modeset]
> 
> [  195.634137] Use-after-free read at 0x000000005417d93f (in kfence-#134):
> [  195.634145]  _nv000177kms+0x439/0x2a10 [nvidia_modeset]
> [  195.634253]  _nv002879kms+0x663/0x9c0 [nvidia_modeset]
> [  195.634358]  _nv000392kms+0x1e1/0x400 [nvidia_modeset]
> [  195.634462]  _nv002878kms+0xf1a/0x11e0 [nvidia_modeset]
> [  195.634566]  _nv002988kms+0x79c/0xd30 [nvidia_modeset]
> [  195.634670]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.634775]  nvkms_ioctl_from_kapi_try_pmlock+0x57/0x90 [nvidia_modeset]
> [  195.634879]  _nv000023kms+0x56b/0xbc0 [nvidia_modeset]
> [  195.634983]  nv_drm_atomic_commit+0x6d4/0xb90 [nvidia_drm]
> [  195.635013]  drm_mode_atomic_ioctl+0x7ac/0x830
> [  195.635022]  drm_ioctl_kernel+0xb0/0xe0
> [  195.635033]  drm_ioctl+0x200/0x2c0
> [  195.635043]  __x64_sys_ioctl+0x129/0x230
> [  195.635052]  do_syscall_64+0x85/0x134
> [  195.635062]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
> 
> [  195.635077] kfence-#134: 0x00000000285011bb-0x00000000170bfea6, size=328, cache=kmalloc-512
> 
> [  195.635086] allocated by task 1195 on cpu 2 at 195.549330s (0.085755s ago):
> [  195.635103]  nvkms_alloc+0x5b/0xa0 [nvidia_modeset]
> [  195.635211]  _nv003020kms+0x22/0x40 [nvidia_modeset]
> [  195.635315]  _nv002842kms+0x266/0x740 [nvidia_modeset]
> [  195.635420]  _nv000719kms+0x40/0x60 [nvidia_modeset]
> [  195.635524]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.635628]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
> [  195.635732]  _nv000096kms+0x19d/0x240 [nvidia_modeset]
> [  195.635837]  nv_drm_internal_framebuffer_create+0x441/0x590 [nvidia_drm]
> [  195.635865]  nv_drm_framebuffer_create+0x40/0x60 [nvidia_drm]
> [  195.635890]  drm_internal_framebuffer_create+0x207/0x230
> 
> [  195.635901] freed by task 1195 on cpu 0 at 195.596718s (0.039181s ago):
> [  195.635915]  _nv000801kms+0x49/0x60 [nvidia_modeset]
> [  195.636022]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.636127]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
> [  195.636231]  _nv000110kms+0x4b/0x60 [nvidia_modeset]
> [  195.636335]  nv_drm_framebuffer_destroy+0x34/0x100 [nvidia_drm]
> [  195.636361]  drm_mode_closefb_ioctl+0x112/0x130
> [  195.636371]  drm_ioctl_kernel+0xb0/0xe0
> [  195.636382]  drm_ioctl+0x200/0x2c0
> [  195.636392]  __x64_sys_ioctl+0x129/0x230
> [  195.636400]  do_syscall_64+0x85/0x134
> [  195.636410]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
> 
> [  195.636424] CPU: 1 UID: 1000 PID: 1222 Comm: KMS thread Tainted: P           OE      6.13.6-2-cachyos #1 949f4b16df602fdea2a660bba2d7d2bab01dfa13
> [  195.636441] Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE, [E]=UNSIGNED_MODULE
> [  195.636444] Hardware name: System manufacturer System Product Name/Z170 PRO GAMING/AURA, BIOS 3805 05/16/2018
> [  195.636449] ==================================================================[  195.634011] ==================================================================
> [  195.634018] BUG: KFENCE: use-after-free read in _nv000177kms+0x439/0x2a10 [nvidia_modeset]
> 
> [  195.634137] Use-after-free read at 0x000000005417d93f (in kfence-#134):
> [  195.634145]  _nv000177kms+0x439/0x2a10 [nvidia_modeset]
> [  195.634253]  _nv002879kms+0x663/0x9c0 [nvidia_modeset]
> [  195.634358]  _nv000392kms+0x1e1/0x400 [nvidia_modeset]
> [  195.634462]  _nv002878kms+0xf1a/0x11e0 [nvidia_modeset]
> [  195.634566]  _nv002988kms+0x79c/0xd30 [nvidia_modeset]
> [  195.634670]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.634775]  nvkms_ioctl_from_kapi_try_pmlock+0x57/0x90 [nvidia_modeset]
> [  195.634879]  _nv000023kms+0x56b/0xbc0 [nvidia_modeset]
> [  195.634983]  nv_drm_atomic_commit+0x6d4/0xb90 [nvidia_drm]
> [  195.635013]  drm_mode_atomic_ioctl+0x7ac/0x830
> [  195.635022]  drm_ioctl_kernel+0xb0/0xe0
> [  195.635033]  drm_ioctl+0x200/0x2c0
> [  195.635043]  __x64_sys_ioctl+0x129/0x230
> [  195.635052]  do_syscall_64+0x85/0x134
> [  195.635062]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
> 
> [  195.635077] kfence-#134: 0x00000000285011bb-0x00000000170bfea6, size=328, cache=kmalloc-512
> 
> [  195.635086] allocated by task 1195 on cpu 2 at 195.549330s (0.085755s ago):
> [  195.635103]  nvkms_alloc+0x5b/0xa0 [nvidia_modeset]
> [  195.635211]  _nv003020kms+0x22/0x40 [nvidia_modeset]
> [  195.635315]  _nv002842kms+0x266/0x740 [nvidia_modeset]
> [  195.635420]  _nv000719kms+0x40/0x60 [nvidia_modeset]
> [  195.635524]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.635628]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
> [  195.635732]  _nv000096kms+0x19d/0x240 [nvidia_modeset]
> [  195.635837]  nv_drm_internal_framebuffer_create+0x441/0x590 [nvidia_drm]
> [  195.635865]  nv_drm_framebuffer_create+0x40/0x60 [nvidia_drm]
> [  195.635890]  drm_internal_framebuffer_create+0x207/0x230
> 
> [  195.635901] freed by task 1195 on cpu 0 at 195.596718s (0.039181s ago):
> [  195.635915]  _nv000801kms+0x49/0x60 [nvidia_modeset]
> [  195.636022]  nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
> [  195.636127]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
> [  195.636231]  _nv000110kms+0x4b/0x60 [nvidia_modeset]
> [  195.636335]  nv_drm_framebuffer_destroy+0x34/0x100 [nvidia_drm]
> [  195.636361]  drm_mode_closefb_ioctl+0x112/0x130
> [  195.636371]  drm_ioctl_kernel+0xb0/0xe0
> [  195.636382]  drm_ioctl+0x200/0x2c0
> [  195.636392]  __x64_sys_ioctl+0x129/0x230
> [  195.636400]  do_syscall_64+0x85/0x134
> [  195.636410]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
> 
> [  195.636424] CPU: 1 UID: 1000 PID: 1222 Comm: KMS thread Tainted: P           OE      6.13.6-2-cachyos #1 949f4b16df602fdea2a660bba2d7d2bab01dfa13
> [  195.636441] Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE, [E]=UNSIGNED_MODULE
> [  195.636444] Hardware name: System manufacturer System Product Name/Z170 PRO GAMING/AURA, BIOS 3805 05/16/2018
> [  195.636449] ==================================================================

nvidia-bug-report.log (1.9 MB)

amel_ancoli · March 10, 2025, 2:03pm

Same issue here
Operating System: CachyOS Linux
KDE Plasma Version: 6.3.2
KDE Frameworks Version: 6.11.0
Qt Version: 6.8.2
Kernel Version: 6.13.6-2-cachyos (64-bit)
Graphics Platform: Wayland
Processors: 16 × AMD Ryzen 7 5700G with Radeon Graphics
Memory: 15.0 GiB of RAM
Graphics Processor 1: NVIDIA GeForce GTX 960/PCIe/SSE2
Graphics Processor 2: NVIDIA GeForce GTX 960/PCIe/SSE2
Product Name: B450M-HDV R4.0

[19247.465983] BUG: KFENCE: use-after-free read in _nv000177kms+0x439/0x2a10 [nvidia_modeset]

[19247.466006] Use-after-free read at 0x00000000aff29bcf (in kfence-#182):
[19247.466009]  _nv000177kms+0x439/0x2a10 [nvidia_modeset]
[19247.466028]  _nv002879kms+0x665/0x9c0 [nvidia_modeset]
[19247.466046]  _nv000392kms+0x1e1/0x400 [nvidia_modeset]
[19247.466063]  _nv002878kms+0xf1a/0x11e0 [nvidia_modeset]
[19247.466081]  _nv002988kms+0x79c/0xd30 [nvidia_modeset]
[19247.466099]  nvKmsIoctl+0xf9/0x270 [nvidia_modeset]
[19247.466116]  nvkms_ioctl_from_kapi_try_pmlock+0x57/0x90 [nvidia_modeset]
[19247.466134]  _nv000023kms+0x56b/0xbc0 [nvidia_modeset]
[19247.466152]  nv_drm_atomic_commit+0x6d7/0xb90 [nvidia_drm]
[19247.466158]  drm_mode_atomic_ioctl+0x7ac/0x830
[19247.466161]  drm_ioctl_kernel+0xb3/0xe0
[19247.466164]  drm_ioctl+0x200/0x2c0
[19247.466167]  __x64_sys_ioctl+0x12c/0x230
[19247.466170]  do_syscall_64+0x85/0x134
[19247.466174]  entry_SYSCALL_64_after_hwframe+0x76/0x7e

[19247.466178] kfence-#182: 0x00000000f9162330-0x000000005262b7d6, size=328, cache=kmalloc-512

[19247.466181] allocated by task 1554 on cpu 8 at 19247.429040s (0.037140s ago):
[19247.466186]  nvkms_alloc+0x5b/0xa0 [nvidia_modeset]
[19247.466205]  _nv003020kms+0x22/0x40 [nvidia_modeset]
[19247.466222]  _nv002842kms+0x266/0x740 [nvidia_modeset]
[19247.466240]  _nv000719kms+0x40/0x60 [nvidia_modeset]
[19247.466257]  nvKmsIoctl+0xf9/0x270 [nvidia_modeset]
[19247.466275]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
[19247.466293]  _nv000096kms+0x19d/0x240 [nvidia_modeset]
[19247.466310]  nv_drm_internal_framebuffer_create+0x444/0x590 [nvidia_drm]
[19247.466315]  nv_drm_framebuffer_create+0x40/0x60 [nvidia_drm]
[19247.466319]  drm_internal_framebuffer_create+0x20a/0x230

[19247.466323] freed by task 1554 on cpu 8 at 19247.451667s (0.014655s ago):
[19247.466327]  _nv000801kms+0x49/0x60 [nvidia_modeset]
[19247.466345]  nvKmsIoctl+0xf9/0x270 [nvidia_modeset]
[19247.466362]  nvkms_ioctl_from_kapi+0x9c/0xd0 [nvidia_modeset]
[19247.466380]  _nv000110kms+0x4b/0x60 [nvidia_modeset]
[19247.466398]  nv_drm_framebuffer_destroy+0x37/0x100 [nvidia_drm]
[19247.466402]  drm_mode_closefb_ioctl+0x112/0x130
[19247.466405]  drm_ioctl_kernel+0xb3/0xe0
[19247.466408]  drm_ioctl+0x200/0x2c0
[19247.466411]  __x64_sys_ioctl+0x12c/0x230
[19247.466413]  do_syscall_64+0x85/0x134
[19247.466416]  entry_SYSCALL_64_after_hwframe+0x76/0x7e

[19247.466421] CPU: 15 UID: 1000 PID: 1595 Comm: HDMI-A-1 Tainted: P           OE      6.13.6-2-cachyos #1 949f4b16df602fdea2a660bba2d7d2bab01dfa13
[19247.466426] Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE, [E]=UNSIGNED_MODULE
[19247.466428] Hardware name: To Be Filled By O.E.M. B450M-HDV R4.0/B450M-HDV R4.0, BIOS P10.10 01/24/2024
[19247.466429] =====================

nvidia-bug-report.log.gz (1.3 MB)

Thomas_007 · March 10, 2025, 5:53pm

==================================================================
[Mo, 10. Mär 2025, 18:14:03] BUG: KFENCE: use-after-free read in _nv000177kms+0x439/0x2a10 [nvidia_modeset]

[Mo, 10. Mär 2025, 18:14:03] Use-after-free read at 0x000000003e334386 (in kfence-#79):
[Mo, 10. Mär 2025, 18:14:03] _nv000177kms+0x439/0x2a10 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv002879kms+0x663/0x9c0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv000392kms+0x1e1/0x400 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv002878kms+0xf1a/0x11e0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv002988kms+0x79c/0xd30 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvkms_ioctl_from_kapi_try_pmlock+0x64/0xb0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv000023kms+0x56b/0xbc0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nv_drm_atomic_apply_modeset_config+0x4bb/0x830 [nvidia_drm]
[Mo, 10. Mär 2025, 18:14:03] nv_drm_atomic_commit+0xe6/0x460 [nvidia_drm]
[Mo, 10. Mär 2025, 18:14:03] drm_mode_atomic_ioctl+0xcb9/0xfc0
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl_kernel+0xad/0x100
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl+0x277/0x4c0
[Mo, 10. Mär 2025, 18:14:03] __x64_sys_ioctl+0x94/0xc0
[Mo, 10. Mär 2025, 18:14:03] do_syscall_64+0x82/0x190
[Mo, 10. Mär 2025, 18:14:03] entry_SYSCALL_64_after_hwframe+0x76/0x7e

[Mo, 10. Mär 2025, 18:14:03] kfence-#79: 0x0000000093bac16f-0x000000006c217955, size=328, cache=kmalloc-512

[Mo, 10. Mär 2025, 18:14:03] allocated by task 2633 on cpu 3 at 13678.474282s (0.016240s ago):
[Mo, 10. Mär 2025, 18:14:03] nvkms_alloc+0x50/0xa0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv003020kms+0x22/0x40 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv002842kms+0x266/0x740 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv000719kms+0x40/0x60 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvkms_ioctl_from_kapi+0x73/0xe0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv000096kms+0x19d/0x240 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nv_drm_internal_framebuffer_create+0x32b/0x4c0 [nvidia_drm]
[Mo, 10. Mär 2025, 18:14:03] nv_drm_framebuffer_create+0x99/0xc0 [nvidia_drm]
[Mo, 10. Mär 2025, 18:14:03] drm_internal_framebuffer_create+0xaa/0x180
[Mo, 10. Mär 2025, 18:14:03] drm_mode_addfb2_ioctl+0x42/0xf0
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl_kernel+0xad/0x100
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl+0x277/0x4c0
[Mo, 10. Mär 2025, 18:14:03] __x64_sys_ioctl+0x94/0xc0
[Mo, 10. Mär 2025, 18:14:03] do_syscall_64+0x82/0x190
[Mo, 10. Mär 2025, 18:14:03] entry_SYSCALL_64_after_hwframe+0x76/0x7e

[Mo, 10. Mär 2025, 18:14:03] freed by task 2633 on cpu 3 at 13678.489651s (0.001111s ago):
[Mo, 10. Mär 2025, 18:14:03] _nv000801kms+0x49/0x60 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvKmsIoctl+0xf7/0x270 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nvkms_ioctl_from_kapi+0x73/0xe0 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] _nv000110kms+0x4b/0x60 [nvidia_modeset]
[Mo, 10. Mär 2025, 18:14:03] nv_drm_framebuffer_destroy+0x3b/0x50 [nvidia_drm]
[Mo, 10. Mär 2025, 18:14:03] drm_mode_closefb_ioctl+0x10e/0x150
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl_kernel+0xad/0x100
[Mo, 10. Mär 2025, 18:14:03] drm_ioctl+0x277/0x4c0
[Mo, 10. Mär 2025, 18:14:03] __x64_sys_ioctl+0x94/0xc0
[Mo, 10. Mär 2025, 18:14:03] do_syscall_64+0x82/0x190
[Mo, 10. Mär 2025, 18:14:03] entry_SYSCALL_64_after_hwframe+0x76/0x7e

[Mo, 10. Mär 2025, 18:14:03] CPU: 25 UID: 1000 PID: 2663 Comm: KMS thread Tainted: P OE 6.13.6-2-cachyos-gcc #1 ebeeb85824bb8a6f1c383a368ca896795f2e750d
[Mo, 10. Mär 2025, 18:14:03] Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE, [E]=UNSIGNED_MODULE
[Mo, 10. Mär 2025, 18:14:03] Hardware name: ASUS System Product Name/Pro WS W790E-SAGE SE, BIOS 1502 08/30/2024
[Mo, 10. Mär 2025, 18:14:03] ==================================================================

Topic		Replies	Views
BUG: KFENCE: use-after-free read in nv_dma_release_sgt+0x29/0x70 [nvidia] Linux	15	601	December 28, 2024
Use-after-free on GTX 1650 dGPU with 545.29.06 on Fedora 39 + Wayland Linux kernel	24	1577	December 3, 2024
AMD Ryzen 7 integrated GPU + NVidia 1650 in same linux machine cause Xorg to default to outdated drivers Linux	19	15868	October 12, 2021
510.60.02-1 Page fault when enabling nvidia-drm.modeset=1 and having multiple monitors connected Linux boot , kernel	2	628	September 30, 2022
[Regression 460 series] Black screen on boot: nvidia-modeset: ERROR: GPU:0: Failed to allocate display engine core DMA push buffer Linux	64	21355	January 7, 2024
555.58.02-10 nvidia-open driver crash Linux pcie , hw , kernel	7	686	August 21, 2024
550.78 release feedback & discussion thread Linux	22	4625	June 26, 2024
Device driver crash (unable to handle page fault) after suspend-&-resume with version 555.58.02 on Linux kernel v6.9.9 Linux kernel	13	1711	October 17, 2024
525.89.02 with RTX3060 reliably crashes when exiting SteamVR Linux kernel , nvbugs	17	870	March 29, 2023
Bug: driver crash on linux kernel > 5.4 when using two GPUs Linux nvbugs , linux	1	1506	March 22, 2022

BUG: KFENCE: use-after-free read in _nv000177kms [nvidia_modeset]

Related topics