Comment 3 for bug 1983609

Updated openssl 1.1.1q-0ubuntu1~XX.04.sav1 (where XX is year of particular Ubuntu release, ie. 16 for Xenial, 18 for Bionic, and 20 for Focal) packages are now available at ppa:savoury1/encryption and all other SavOS PPAs (ppa:savoury1/*) where src:openssl is published (including for Ubuntu 16.04 Xenial at ppa:savoury1/{ffmpeg4,graphics,multimedia} as used by OP). The new package reworks c_rehash-compat.patch (Debian patch to create old hashes for compatibility) so that patched c_rehash works again with c_rehash code changes implemented in OpenSSL 1.1.1p (to address CVE-2022-2068).