Created attachment 360584 [details, diff] xorg-server-1.14.3-CVE-2013-4396.patch Attached is the official upstream fix.
*** This bug has been marked as a duplicate of bug 487360 ***