CVE-2022-1736: 
Linux Debian vulnerability analysis and mitigation

Ubuntu's configuration of gnome-control-center contained a vulnerability (CVE-2022-1736) where Remote Desktop Sharing was enabled by default. This issue was discovered in May 2022 and affected Ubuntu 22.04 LTS (Jammy) release. The vulnerability stemmed from the gnome-remote-desktop's systemd service running automatically, contrary to Ubuntu's security policy which strongly discourages open ports by default (Ubuntu Security, Launchpad Bug).

The vulnerability manifested through the gnome-remote-desktop systemd user service being always active, resulting in an open RDP port (ms-wbt-server) even when remote desktop sharing was not explicitly enabled by the user. This was confirmed through system monitoring showing the service actively listening on the RDP port (Launchpad Bug).

The primary impact was the exposure of an unnecessary open network port on affected systems, which contradicted Ubuntu's security principle of having no listening network services after initial installation. While the service running itself was considered 'harmless' by some, it represented both a security risk and a waste of system resources (Launchpad Bug).

The issue was fixed in gnome-remote-desktop package version 42.1.1-0ubuntu1 for Ubuntu 22.04 LTS. The fix involved modifying the package to prevent automatic enabling of the systemd user service and adding a postinst script to remove the automatic enabling of the user service. After the update, the Remote Desktop service would only run when explicitly enabled by the user (Ubuntu Security, Launchpad Bug).