Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.
http://lists.opensuse.org/opensuse-updates/2013-10/msg00056.html
http://lists.opensuse.org/opensuse-updates/2013-10/msg00060.html
http://openwall.com/lists/oss-security/2013/10/08/6
http://rhn.redhat.com/errata/RHSA-2013-1426.html
https://bugzilla.redhat.com/show_bug.cgi?id=1014561