Please use CVE-2022-1736 for the gnome-remote-desktop user service being enabled on Ubuntu.
The Debian packaging, and derivatives of both Ubuntu and Debian, for gnome-remote-desktop are probably very similar. The Debian policy strongly encourages services to be running by default after installation[1]. Ubuntu, however, strongly discourages open ports by default[2]. So, while there may be identical code in the other distributions, this may or may not be considered a vulnerability by the other distributions, based on their own policies. Thanks [1]: https://www.debian.org/doc/debian-policy/ch-opersys.html#managing-the-links "The default behaviour is to enable autostarting your package’s daemon" [2]: https://wiki.ubuntu.com/Security/Features#ports "Default installations of Ubuntu must have no listening network services after initial install. Exceptions to this rule [enumerated exceptions elided]" ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1736 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1973028 Title: gnome-remote-desktop user service is always running To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnome-remote-desktop/+bug/1973028/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
