CVE-2022-2061 (https://github.com/hpjansson/chafa/commit/e6ce3746cdcf0836b9dae659a5aed15d73a080d8): Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior to 1.12.0. The patch isn't actually in 1.12.0.
Latest chafa version (1.12.4) has already been added and stabilized in the meantime, security@ can proceed with wrangling this bug.
Thanks! Only an overread, all done.