desktop-packages team mailing list archive

[Steve Dodier-Lazaro <1477983@xxxxxxxxxxxxxxxxxx>]

Public bug reported:

The Zeitgeist plugin creates a GPtrArray to give to libzeitgeist when
registering a Zeitgeist datasource. libzeitgeist internally sinks this
reference, but the plugin assumes the GPtrArray to still be available
and later attempts to unref it.

The attached patch adds a reference to the GPtrArray to keep it
available until the end of the plugin's initialisation code, where it is
unrefed. The patch is designed to integrate with quilt on top of gedit
3.10.4-0ubuntu10.

The upstream bug report is
https://bugzilla.gnome.org/show_bug.cgi?id=752824.

** Affects: gedit (Ubuntu)
     Importance: Undecided
         Status: New

** Patch added: "fix_read_after_free.patch"
   https://bugs.launchpad.net/bugs/1477983/+attachment/4433604/+files/fix_read_after_free.patch

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gedit in Ubuntu.
https://bugs.launchpad.net/bugs/1477983

Title:
  Zeitgeist plugin read/write after free on datasource registration

Status in gedit package in Ubuntu:
  New

Bug description:
  The Zeitgeist plugin creates a GPtrArray to give to libzeitgeist when
  registering a Zeitgeist datasource. libzeitgeist internally sinks this
  reference, but the plugin assumes the GPtrArray to still be available
  and later attempts to unref it.

  The attached patch adds a reference to the GPtrArray to keep it
  available until the end of the plugin's initialisation code, where it
  is unrefed. The patch is designed to integrate with quilt on top of
  gedit 3.10.4-0ubuntu10.

  The upstream bug report is
  https://bugzilla.gnome.org/show_bug.cgi?id=752824.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gedit/+bug/1477983/+subscriptions