Chancen and Daniel Fiala discovered that OpenSSL incorrectly handled the c_rehash script. A local attacker could possibly use this issue to execute arbitrary commands when c_rehash is run.
1.1.1-1ubuntu2.1~18.04.191.0.2n-1ubuntu5.101.1.1f-1ubuntu2.153.0.2-0ubuntu1.5