Security Issue: Null Dereference In ActivateResult
Trigger
gdbus call -e -d org.gnome.Recipes -o /org/gnome/Recipes/SearchProvider -m org.gnome.Shell.SearchProvider2.ActivateResult -- Hello '[""]' 3
Stack Trace
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `gnome-recipes'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x0000557771bd2870 in gr_recipe_get_author ()
[Current thread is 1 (Thread 0x7f625cd9ef80 (LWP 127557))]
(gdb) frame
#0 0x0000557771bd2870 in gr_recipe_get_author ()
(gdb) bt
#0 0x0000557771bd2870 in gr_recipe_get_author ()
#1 0x0000557771bbcc13 in gr_details_page_set_recipe ()
#2 0x0000557771bebca1 in gr_window_show_recipe ()
#3 0x0000557771bb3530 in ()
#4 0x00007f6261e26c8d in g_closure_invoke () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#5 0x00007f6261e3a365 in () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#6 0x00007f6261e432be in g_signal_emit_valist () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#7 0x00007f6261e4397f in g_signal_emit () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#8 0x00007f6261f40265 in () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#9 0x00007f6261f3e8eb in g_action_activate () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#10 0x0000557771be1cf7 in ()
#11 0x00007f62600438ee in ffi_call_unix64 () at /usr/lib/x86_64-linux-gnu/libffi.so.6
#12 0x00007f62600432bf in ffi_call () at /usr/lib/x86_64-linux-gnu/libffi.so.6
#13 0x00007f6261e27482 in g_cclosure_marshal_generic () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#14 0x00007f6261e26c8d in g_closure_invoke () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#15 0x00007f6261e3a365 in () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#16 0x00007f6261e424cf in g_signal_emitv () at /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0
#17 0x0000557771baf57a in ()
#18 0x00007f6261f79e76 in () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#19 0x00007f6261f61379 in () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#20 0x00007f6261d44dd8 in g_main_context_dispatch () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#21 0x00007f6261d451c8 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#22 0x00007f6261d4525c in g_main_context_iteration () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#23 0x00007f6261f37a2d in g_application_run () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#24 0x0000557771badb4f in main ()
(gdb) x/i $rip
=> 0x557771bd2870 <gr_recipe_get_author>: mov 0x28(%rdi),%rax
(gdb) x/i $rdi
0x0: Cannot access memory at address 0x0
(gdb)