Takuya Shiozaki of CodeBlog discovered a heap based buffer overflow flaw in X.org's PCF font handler. This flaw is being tracked as VU#203220 by CERT.
Lifting embargo: http://lists.freedesktop.org/archives/xorg/2008-January/031918.html
libXfont-1.3.1-2.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
libXfont-1.2.9-3.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2008-0064.html http://rhn.redhat.com/errata/RHSA-2008-0030.html http://rhn.redhat.com/errata/RHSA-2008-0029.html Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-0891 https://admin.fedoraproject.org/updates/F8/FEDORA-2008-0794