gnome-shell crashed with SIGSEGV in g_type_check_instance_cast() from free_fetch_user_request() [accountsservice]

This is now the #1 gnome-shell crasher in Ubuntu 23.04.

https://errors.ubuntu.com/problem/d85747462e756cb405d1e87b9c59b0b995a7d394
https://errors.ubuntu.com/problem/1674bdbf40a28b5f59067ffde832ba508ecba114

Valgrind memory errors in gnome-shell 42 from accountsservice:

==60511== Invalid read of size 8
==60511== at 0x4D207FA: g_type_check_instance_cast (gtype.c:4120)
==60511== by 0x1E421CA2: free_fetch_user_request (act-user-manager.c:1708)
==60511== by 0x1E4298E7: on_find_user_by_name_finished (act-user-manager.c:1187)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C298BA: reply_cb (gdbusproxy.c:2576)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C2107E: g_dbus_connection_call_done (gdbusconnection.c:5895)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0C4C: complete_in_idle_cb (gtask.c:1244)
==60511== by 0x4D9CC23: UnknownInlinedFun (gmain.c:3417)
==60511== by 0x4D9CC23: g_main_context_dispatch (gmain.c:4135)
==60511== Address 0x185b5110 is 0 bytes inside a block of size 64 free'd
==60511== at 0x484B27F: free (in /usr/libexec/valgrind/vgpreload_memcheck-amd64-linux.so)
==60511== by 0x4D1F7D4: g_type_free_instance (gtype.c:2008)
==60511== by 0x1E428ECA: UnknownInlinedFun (act-user.c:562)
==60511== by 0x1E428ECA: UnknownInlinedFun (act-user.c:557)
==60511== by 0x1E428ECA: _act_user_update_from_object_path (act-user.c:1346)
==60511== by 0x1E42966F: fetch_user_incrementally (act-user-manager.c:1789)
==60511== by 0x1E4298E7: on_find_user_by_name_finished (act-user-manager.c:1187)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C298BA: reply_cb (gdbusproxy.c:2576)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C2107E: g_dbus_connection_call_done (gdbusconnection.c:5895)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== Block was alloc'd at
==60511== at 0x4848899: malloc (in /usr/libexec/valgrind/vgpreload_memcheck-amd64-linux.so)
==60511== by 0x4DA5718: g_malloc (gmem.c:125)
==60511== by 0x4DBCB64: g_slice_alloc (gslice.c:1072)
==60511== by 0x4DBD1CD: g_slice_alloc0 (gslice.c:1098)
==60511== by 0x4D24E61: g_type_create_instance (gtype.c:1911)
==60511== by 0x4D0BF4C: g_object_new_internal (gobject.c:2011)
==60511== by 0x4D0D1AC: g_object_new_with_properties (gobject.c:2181)
==60511== by 0x4D0DCB0: g_object_new (gobject.c:1821)
==60511== by 0x1E422792: create_new_user (act-user-manager.c:706)
==60511== by 0x1E429BD8: act_user_manager_get_user (act-user-manager.c:1879)
==60511== by 0x68ADE2D: ??? (in /usr/lib/x86_64-linux-gnu/libffi.so.8.1.0)
==60511== by 0x68AA492: ??? (in /usr/lib/x86_64-linux-gnu/libffi.so.8.1.0)
==60511==
==60511== Invalid read of size 8
==60511== at 0x4D206E9: g_type_check_instance_is_fundamentally_a (gtype.c:4091)
==60511== by 0x4D06E9A: g_object_set_data (gobject.c:3982)
==60511== by 0x1E421CB6: free_fetch_user_request (act-user-manager.c:1708)
==60511== by 0x1E4298E7: on_find_user_by_name_finished (act-user-manager.c:1187)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C298BA: reply_cb (gdbusproxy.c:2576)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C2107E: g_dbus_connection_call_done (gdbusconnection.c:5895)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0C4C: complete_in_idle_cb (gtask.c:1244)
==60511== Address 0x185b5110 is 0 bytes inside a block of size 64 free'd
==60511== at 0x484B27F: free (in /usr/libexec/valgrind/vgpreload_memcheck-amd64-linux.so)
==60511== by 0x4D1F7D4: g_type_free_instance (gtype.c:2008)
==60511== by 0x1E428ECA: UnknownInlinedFun (act-user.c:562)
==60511== by 0x1E428ECA: UnknownInlinedFun (act-user.c:557)
==60511== by 0x1E428ECA: _act_user_update_from_object_path (act-user.c:1346)
==60511== by 0x1E42966F: fetch_user_incrementally (act-user-manager.c:1789)
==60511== by 0x1E4298E7: on_find_user_by_name_finished (act-user-manager.c:1187)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C298BA: reply_cb (gdbusproxy.c:2576)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== by 0x4BC0E0A: UnknownInlinedFun (gtask.c:1300)
==60511== by 0x4BC0E0A: g_task_return (gtask.c:1256)
==60511== by 0x4C2107E: g_dbus_connection_call_done (gdbusconnection.c:5895)
==60511== by 0x4BC0C08: g_task_return_now (gtask.c:1230)
==60511== Block was alloc'd at
==60511== at 0x4848899: malloc (in /usr/libexec/valgrind/vgpreload_memcheck-amd64-linux.so)
==60511== by 0x4DA5718: g_malloc (gmem.c:125)
==60511== by 0x4DBCB64: g_slice_alloc (gslice.c:1072)
==60511== by 0x4DBD1CD: g_slice_alloc0 (gslice.c:1098)
==60511== by 0x4D24E61: g_type_create_instance (gtype.c:1911)
==60511== by 0x4D0BF4C: g_object_new_internal (gobject.c:2011)
==60511== by 0x4D0D1AC: g_object_new_with_properties (gobject.c:2181)
==60511== by 0x4D0DCB0: g_object_new (gobject.c:1821)
==60511== by 0x1E422792: create_new_user (act-user-manager.c:706)
==60511== by 0x1E429BD8: act_user_manager_get_user (act-user-manager.c:1879)
==60511== by 0x68ADE2D: ??? (in /usr/lib/x86_64-linux-gnu/libffi.so.8.1.0)
==60511== by 0x68AA492: ??? (in /usr/lib/x86_64-linux-gnu/libffi.so.8.1.0)