{"id":"UBUNTU-CVE-2013-20001","details":"An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse the IPv6 address data, and access is allowed to everyone. IPv6 restrictions from the configuration are not applied.","modified":"2026-02-04T04:00:22.061069Z","published":"2021-02-12T20:15:00Z","related":["USN-6511-1"],"upstream":["CVE-2013-20001"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2013-20001"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6511-1"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2013-20001"}],"affected":[{"package":{"name":"zfs-linux","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/zfs-linux@0.6.5.6-0ubuntu30?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["0.6.4.2-0ubuntu1","0.6.5.3-0ubuntu2","0.6.5.3-0ubuntu3","0.6.5.3-0ubuntu4","0.6.5.3-0ubuntu5","0.6.5.3-0ubuntu6","0.6.5.4-0ubuntu1","0.6.5.4-0ubuntu2","0.6.5.4-0ubuntu3","0.6.5.4-0ubuntu4","0.6.5.4-0ubuntu5","0.6.5.4-0ubuntu6","0.6.5.6-0ubuntu5","0.6.5.6-0ubuntu6","0.6.5.6-0ubuntu7","0.6.5.6-0ubuntu8","0.6.5.6-0ubuntu9","0.6.5.6-0ubuntu10","0.6.5.6-0ubuntu12","0.6.5.6-0ubuntu13","0.6.5.6-0ubuntu14","0.6.5.6-0ubuntu15","0.6.5.6-0ubuntu16","0.6.5.6-0ubuntu17","0.6.5.6-0ubuntu18","0.6.5.6-0ubuntu19","0.6.5.6-0ubuntu20","0.6.5.6-0ubuntu21","0.6.5.6-0ubuntu23","0.6.5.6-0ubuntu24","0.6.5.6-0ubuntu25","0.6.5.6-0ubuntu26","0.6.5.6-0ubuntu27","0.6.5.6-0ubuntu28","0.6.5.6-0ubuntu29","0.6.5.6-0ubuntu30"],"ecosystem_specific":{"binaries":[{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"libnvpair1linux"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"libuutil1linux"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"libzfs2linux"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"libzfslinux-dev"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"libzpool2linux"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"zfs-dkms"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"zfs-initramfs"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"zfs-zed"},{"binary_version":"0.6.5.6-0ubuntu30","binary_name":"zfsutils-linux"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-20001.json"}},{"package":{"name":"zfs-linux","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/zfs-linux@0.7.5-1ubuntu16.12?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["0.6.5.11-1ubuntu3","0.6.5.11-1ubuntu4","0.6.5.11-1ubuntu5","0.6.5.11-1ubuntu6","0.7.5-1ubuntu2","0.7.5-1ubuntu3","0.7.5-1ubuntu4","0.7.5-1ubuntu5","0.7.5-1ubuntu6","0.7.5-1ubuntu7","0.7.5-1ubuntu8","0.7.5-1ubuntu9","0.7.5-1ubuntu10","0.7.5-1ubuntu11","0.7.5-1ubuntu12","0.7.5-1ubuntu13","0.7.5-1ubuntu14","0.7.5-1ubuntu15","0.7.5-1ubuntu16","0.7.5-1ubuntu16.2","0.7.5-1ubuntu16.3","0.7.5-1ubuntu16.4","0.7.5-1ubuntu16.6","0.7.5-1ubuntu16.7","0.7.5-1ubuntu16.8","0.7.5-1ubuntu16.9","0.7.5-1ubuntu16.10","0.7.5-1ubuntu16.11","0.7.5-1ubuntu16.12"],"ecosystem_specific":{"binaries":[{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"libnvpair1linux"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"libuutil1linux"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"libzfs2linux"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"libzfslinux-dev"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"libzpool2linux"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfs-dkms"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfs-dracut"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfs-initramfs"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfs-test"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfs-zed"},{"binary_version":"0.7.5-1ubuntu16.12","binary_name":"zfsutils-linux"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-20001.json"}},{"package":{"name":"zfs-linux","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/zfs-linux@0.8.3-1ubuntu12.16?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.3-1ubuntu12.16"}]}],"versions":["0.8.1-1ubuntu14","0.8.1-1ubuntu15","0.8.1-1ubuntu16","0.8.1-1ubuntu17","0.8.2-3ubuntu1","0.8.2-3ubuntu2","0.8.2-3ubuntu3","0.8.2-3ubuntu4","0.8.2-3ubuntu5","0.8.3-1ubuntu2","0.8.3-1ubuntu3","0.8.3-1ubuntu4","0.8.3-1ubuntu5","0.8.3-1ubuntu6","0.8.3-1ubuntu7","0.8.3-1ubuntu8","0.8.3-1ubuntu9","0.8.3-1ubuntu10","0.8.3-1ubuntu11","0.8.3-1ubuntu12","0.8.3-1ubuntu12.1","0.8.3-1ubuntu12.2","0.8.3-1ubuntu12.3","0.8.3-1ubuntu12.4","0.8.3-1ubuntu12.5","0.8.3-1ubuntu12.6","0.8.3-1ubuntu12.7","0.8.3-1ubuntu12.8","0.8.3-1ubuntu12.9","0.8.3-1ubuntu12.10","0.8.3-1ubuntu12.11","0.8.3-1ubuntu12.12","0.8.3-1ubuntu12.13","0.8.3-1ubuntu12.14","0.8.3-1ubuntu12.15"],"ecosystem_specific":{"binaries":[{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"libnvpair1linux"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"libuutil1linux"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"libzfs2linux"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"libzfslinux-dev"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"libzpool2linux"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"python3-pyzfs"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"spl"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"spl-dkms"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfs-dkms"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfs-dracut"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfs-initramfs"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfs-test"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfs-zed"},{"binary_version":"0.8.3-1ubuntu12.16","binary_name":"zfsutils-linux"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-20001.json"}},{"package":{"name":"zfs-linux","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/zfs-linux@2.1.5-1ubuntu6~22.04.2?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1.5-1ubuntu6~22.04.2"}]}],"versions":["2.0.6-1ubuntu2","2.0.6-1ubuntu3","2.1.2-1ubuntu1","2.1.2-1ubuntu2","2.1.2-1ubuntu3","2.1.4-0ubuntu0.1","2.1.5-1ubuntu6~22.04.1"],"ecosystem_specific":{"binaries":[{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libnvpair3linux"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libpam-zfs"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libuutil3linux"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libzfs4linux"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libzfsbootenv1linux"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libzfslinux-dev"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"libzpool5linux"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"python3-pyzfs"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfs-dkms"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfs-dracut"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfs-initramfs"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfs-test"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfs-zed"},{"binary_version":"2.1.5-1ubuntu6~22.04.2","binary_name":"zfsutils-linux"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-20001.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}