Ubuntu Security Notice 3946-1 - It was discovered that rssh incorrectly handled certain command-line arguments and environment variables. An authenticated user could bypass rssh's command restrictions, allowing an attacker to run arbitrary commands.
b3912f7c3ac4d52ac8b9e4852a3b76a0715abb7ec40879e56706a9a715489272