Description: The BPF_S_ANC_NLATTR and BPF_S_ANC_NLATTR_NEST extensions fail to check for a minimal message length
References:
 http://www.openwall.com/lists/oss-security/2014/05/09/5
Notes:
 Thought to be fixed in 3.14.4-1 by patch
 bugfix/all/filter-prevent-nla-extensions-to-peek-beyond-the-end.patch,
 but two hunks are applied in the same place so the bug is only half-fixed.
Bugs:
upstream: released (3.15-rc2) [05ab8f2647e4221cbdb3856dd7d32bd5407316b3]
2.6.32-upstream-stable: released (2.6.32.64)
sid: released (3.14.5-1)
3.2-wheezy-security: released (3.2.57-3+deb7u2) [bugfix/all/filter-prevent-nla-extensions-to-peek-beyond-the-end.patch]
2.6.32-squeeze-security: released (2.6.32-48squeeze8)
3.2-upstream-stable: released (3.2.60)