CVE-2014-1891

Multiple integer overflows in the (1) FLASK GETBOOL, (2) FLASK SETBOOL, (3) FLASK USER, and (4) FLASK CONTEXT TO SID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unspecified vectors, a different vulnerability than CVE-2014-1892, CVE-2014-1893, and CVE-2014-1894.